South Korea’s National Tax Service (NTS) is taking decisive steps to secure its handling of confiscated digital assets following a significant operational failure. The agency is now moving to select a private custody provider for seized cryptocurrency, a direct response to an incident where a wallet recovery phrase was accidentally exposed in an official press release, leading to the unauthorized transfer of approximately $4.8 million in tokens.
The breach occurred on February 26 when the NTS published an image of a Ledger cold wallet alongside a sheet of paper clearly displaying the 24-word mnemonic seed phrase, which had not been redacted. This fundamental security lapse allowed unknown parties to access and transfer the confiscated assets. According to reporting by ZDNet Korea, which cited individuals familiar with the matter, the NTS is actively drafting selection criteria for qualified custodians and aims to finalize a provider contract within the first half of 2026.
Formalizing Custody Through Rigorous Provider Selection
The planned outsourcing represents a major shift toward institutionalizing the storage of seized crypto. The NTS will evaluate potential partners on several critical factors to prevent a recurrence of such a breach. Key criteria include robust security protocols, the financial stability and scale of the company, and a mandatory requirement that the firm hold specific insurance coverage under South Korea’s recently enacted Virtual Asset User Protection Act.
This legislative framework, designed to enhance user protection in the digital asset space, now informs the NTS’s risk management strategy. By requiring insurance, the agency seeks a financial backstop to cover potential future losses, addressing a glaring vulnerability exposed by the February incident where no such safeguard existed.
New Task Force Drives Systemic Overhaul
The custody provider selection process will be spearheaded by a newly established internal task force dedicated to advancing the NTS’s digital asset management systems. This group’s mandate extends beyond a single vendor search; it is charged with a comprehensive review of the entire lifecycle for seized assets.
According to ZDNet Korea, the task force is developing standardized operational manuals that will govern every stage—from the legal seizure of assets through secure storage, eventual liquidation, and final disposition. Concurrently, it will design specialized training programs for personnel involved in these operations and conduct regular security assessments. A long-term goal is the creation of a dedicated, centralized division within the NTS to consolidate all cryptocurrency-related work, which is currently dispersed across multiple departments due to the asset class’s novelty.
Addressing a Pattern of Handling Failures
The NTS’s seed phrase leak was not an isolated event. It followed a separate, highly publicized failure where Seoul’s Gangnam Police are alleged to have lost 22 Bitcoin (BTC) that had been seized in a criminal case. These back-to-back incidents underscored systemic weaknesses in how South Korean authorities manage and safeguard confiscated digital assets.
Inter-Agency Review Launched at Highest Levels
The gravity of these failures prompted a cross-governmental response. On March 1, South Korea’s Deputy Prime Minister and Minister of Economy and Finance, Koo Yun-cheol, announced a formal, inter-agency probe to audit and overhaul the entire government protocol for handling seized cryptocurrency. This high-level review signifies that the issues extend beyond a single agency and require coordinated national solutions.
The NTS’s move to professionalize custody through a vetted private provider, supported by a new internal task force and a broader governmental audit, marks a pivotal moment in South Korea’s approach
