A Telegram-based black market known as Xinbi Guarantee, also referred to as Huione Guarantee, has been linked to over $8 billion in illicit cryptocurrency transactions since 2022. This Chinese-language platform facilitated a range of illegal activities including stolen data sales, fake identification, money laundering, and romance scams. The market reportedly enabled more than $27 billion in transactions before shutting down following mass account bans. Investigations reveal that the platform was registered in the United States and was exploited by North Korean cyber operatives to launder stolen cryptocurrency. Security researchers have exposed thousands of email addresses and identities connected to North Korean IT workers involved in these cybercriminal schemes, which are part of a broader network supporting the regime's cyber operations. Experts describe these activities as a crucial revenue stream for North Korea, underpinning its global espionage and hacking efforts.