US Returns $154 Million In Bitcoins Stolen By Sony Employee

The United States has taken legal action to seize and return over $154 million purportedly stolen from Sony Life Insurance Company Ltd, a SONY subsidiary, by an employee in a textbook business email compromise (BEC) attack. BleepingComputer reports: "According to the government's complaint, Rei Ishii, an employee of Sony Life Insurance Company Ltd. ("Sony Life") in Tokyo, allegedly diverted the $154 million when the company attempted to transfer funds between its financial accounts," the Justice Dept said today. "Ishii allegedly did this by falsifying transaction instructions, which caused the funds to be transferred to an account that Ishii controlled at a bank in La Jolla, California."

According to court documents, Ishii switched the transfer address for a Sony Life transaction to use a Silvergate Bank account under his control. Ishii later converted the stolen funds into more than 3879 bitcoins via A Coinbase set up to automatically transfer all added funds to an offline cryptocurrency cold wallet [...]. After converting the money to cryptocurrency, Ishii also tried persuading his supervisor and several Sony Life executives not to help investigators by emailing them a ransom note typed in English and Japanese. "If you accept the settlement, we will return the funds back. If you are going to file criminal charges, it will be impossible to recover the funds," the note read. "We might go down behind all of this, but one thing is for sure, you are going to be right there next to us. We strongly recommend to stop communicate (sic) with any third parties including law enforcement."

However, on December 1, following an investigation in collaboration with Japanese law enforcement authorities, the FBI seized the 3879.16242937 BTC in Ishii's wallet after obtaining the private key, which made it possible to transfer all the bitcoins to the FBI's bitcoin wallet. [...] Tokyo's Metropolitan Police Department arrested the 32-year-old Ishii the same day and criminally charged him on suspicion of obtaining $154 million dollars following fraudulent money transfers from mid-May.

[usual headline correction]

[Len]

"US Returns $154 Million Stolen By Sony Employee"
The employee stole regular, old-fashioned money and then spent it to buy bitcoin.

Re:

[Entrope]

You must be new here. Welcome to Slashdot, where the supposed editors don't.

Re:

[maybe111]

clickbait of the worst kind

Re:

[gweihir]

But...but...but...Bitcoin! It _must_ be special! Somehow. Obviously.

Re:

[raftpeople]

The FBI has been granted warrants earlier this year to access private computers of 3rd parties (approx/guesstimate 68,000 of them) to fight hacking related to exchange servers, so it's not beyond a reasonable possibility that they had a warrant for this action.

Re:

[gweihir]

They likely had a warrant for it. They just do not want the public to know what they actually did. Not law enforcement at its worst, but still shady.

Re:

[EndlessNameless]

Seizing a computer and using forensic techniques to recover data is not illegal.

Recovering the private key for the wallet is clearly acceptable because it is a piece of evidence. It ties him to the stolen money---this would be in addition to any other ties that may exist from handling the fiat currency, but more evidence is always better.

If they did have to circumvent security measures to retrieve the key, that is legal with a court order. I'd assume the police/DA did the paperwork, but his lawyers can chal

3879 BTC != $150,000,000.00

[dschnur]

From what I can see, 3879 BTC has hovered between about 50 million and 64 million in the past few months. It's still a lot of money, but makes you wonder where the rest of it is. Probably lost in journalistic best intentions...

Re:

[Linsaran]

From what I can see, 3879 BTC has hovered between about 50 million and 64 million in the past few months. It's still a lot of money, but makes you wonder where the rest of it is. Probably lost in journalistic best intentions...

Your numbers are off, 1BTC valued at about $49,000 on Coinbase as of this posting, and that's actually down from recent highs of over $60,000. 3879 X $49,000 is about $190,000,000 at current market prices. If anything Sony has gained money from this attempted theft.

Re:

[EndlessNameless]

If anything Sony has gained money from this attempted theft.

Maybe, but probably not.

The US government will undoubtedly return Sony's $154M once everything works its way through the courts. But they're not obliged to surrender the Bitcoins that the perpetrator purchased. Sony lost cash and therefore can be made whole with cash.

The USG could transfer those Bitcoins to Sony, but it's arguably wasteful. They could defray the operating costs of the agency by selling the BTC at market value, compensating Sony in fiat currency, and keeping the balance. Sony isn't entitled

Re:

[Linsaran]

Very valid points, and very likely what they'll do. The primary purpose of my post was to point out the error of OPs math.

Not so smart after all.

[swiftverdict]

Every time I see someone getting caught for something like this, they are always issuing Coinbase. It’s hard to imagine people that plan such extravagant and high risk things like this have such little understanding of what Coinbase is and does. But here we are. I wonder how many successful ones, done without easy ways to track, we never hear about. I bet a lot more than the ones we do hear about

Re: Not so smart after all.

[algaeman]

Dumb crooks get caught. Smart crooks become politicians.

Re:

[ceoyoyo]

How would you buy $150 million worth of bitcoin?

Re:

[swiftverdict]

Literally any exchange that isn't based in the United States. There's plenty of them.

Re:

[ceoyoyo]

With the capacity to accept a $150 million order on very short notice?

I doubt that's how they got him anyway. He transferred the money to a US bank account, presumably with his name on it. After that it doesn't matter where he bought the coins, the FBI just had to search his computer and find out.

This all sounds like some disillusioned banker saw a transfer order go across his desk, changed the account number and thought he'd figure out the rest later. If he'd planned ahead and set up accounts at banks that

what happens when Coinbase says will not work fbi

[Joe_Dragon]

what happens when Coinbase says will not work with fbi at all any other exchange?

Re:

[sg_oneill]

Coinbase executives get arrested for obstructing justice. Thats what happens.

Re:

[Impy the Impiuos Imp]

They wrench onthe money that is in the US. So unless they plan to abandon US operstions...

The US had a law allowing Cuban exiles to sue foreign companies that operated in Cuba but also had operations in the US, for things like loss of their house to Castro.

Re:

[EndlessNameless]

They'll be prohibited from processing transactions with US banks at a minimum, and the US can probably rope the EU into blacklisting them too.

That's on top of any potential contempt charges for defying a court order.

They can challenge a warrant or other orders as being too vague or lacking jurisdiction... but if and when the court decides that they must comply, the penalties can get very steep.

Re:

[gweihir]

If they are suicidal or want to spend a long time in jail, they will do exactly that. Also, what do you think will happen when they apply for a license under future regulations and they have _that_ on their record?

The bigger question

[lostmy4digitUID]

How did they get his private keys and THEN arrest him?

Re:

[Kaenneth]

raided his house while he wasn't home; and installed surveillance/keylogger/etc. to capture him accessing his wallet (or just found the plaintext key.)

Re:

[gweihir]

He did something stupid. We will probably find out what it was, but it may take a while. The FBI may want to use whatever they used again, so they will try to keep it secret. May even offer some kind of deal to the guy if his lawyers leave that out of the court proceedings.

FBI justifying illegal surveillance

[witz2]

Stollen money was FIAT, and... Its over, illegal surveillance is just.. Illegal

Re:

[EndlessNameless]

It doesn't matter if you convert stolen USD into other assets or currencies... it's still getting seized. Buy a car with it? Seized. Purchase real estate? Seized.

They're just treating Bitcoin the same as any other currency. If he had moved the money into Euros in an EU bank, they'd start a process to freeze and reclaim those funds.

Re:

[gweihir]

The FBI will use anything they can get away with. LEO on this level are generally not people with morals. They are people with a goal.

On the other hand, the US court system is not much better with secret courts and other fundamentally immoral things. So why do you assume the surveillance was illegal?

Re:

[GrumpySteen]

What illegal surveillance? Sony and Citibank detected the theft and contacted Japanese authorities. The FBI was cooperating with Japanese authorities who were investigating the theft.

Please point out what part of the FBI's participation was illegal.

Access to wallet

[george929a]

“after obtaining the private key” Simple question, how did the FBI get the private key? Did he keep it in a 'MyPrivateKey.txt' file on his desktop?

Re:

[EndlessNameless]

They'd make a copy of his hard drive and dig around with a dedicated tool like Encase, most likely. Even without specialist software, they could mount the HD image and grep for anything.

For instance... they could also do a hex search of his entire HD looking for Base64 strings of the appropriate length (because they'd know what to expect based on the algorithm/length of the public key). On any hits, they could see what file it is contained in, and ignore things that are obviously application-related data. P

Re:

[GrumpySteen]

Or...

https://xkcd.com/538/ [xkcd.com]

Re:

[dusanv]

Considering he used Coinbase, probably.