← back to the index
HS-005 Cloud mining fraud · South Korea / United States 2020

MiningMax — A Quarter-Billion-Dollar Mining Mirage Across 54 Countries

cloud-miningconvicteddefi-era
Operation
MiningMax
Investor Losses
$250M
Contracts Sold
Mining rigs and pool contracts to 18,000 investors
Status
Convicted

Summary

Between September 2016 and October 2017, MiningMax LLC solicited approximately 270 billion Korean won — equivalent to $250 million — from roughly 18,000 investors across 54 countries by selling access to Ethereum mining rigs and pool contracts that promised monthly returns of $800 to $1,200 per machine. The company, registered in Las Vegas but operated primarily by South Korean nationals, ran a seven-tier multi-level marketing structure in which investors were rewarded for recruiting additional participants. Of the $250 million collected, roughly $80 million was actually spent on mining hardware; approximately $110 million was diverted to offshore accounts controlled by the scheme's organizers. The chairman identified in South Korean prosecutions as Daniel Park (Nam Ho Park) and several other top executives fled South Korea and were placed on Interpol's wanted list. By December 2017, South Korean prosecutors had indicted 21 individuals and arrested 14 on charges of fraud and violations of the country's door-to-door sales laws. California's Department of Financial Protection and Innovation issued a desist-and-refrain order against MiningMax in 2020. As of the filing date, the chairman and vice chairman remain fugitives; the 14 individuals arrested in South Korea faced prosecution there.

The MiningMax scheme is distinguished by its geographic scale — 54 countries affected, including approximately 2,600 US investors — and by the sophistication of its cover story. Unlike some cloud mining frauds that sold entirely nonexistent hardware, MiningMax actually purchased mining equipment and operated it at a fraction of the scale it represented. This partial reality — real machines, real hashing, inadequate returns, fabricated performance figures — made the fraud harder to detect at the individual investor level and illustrated how a cloud mining scheme can operate with genuine physical infrastructure while still being systematically fraudulent in its representations to investors.

Timeline

September 2016
MiningMax begins soliciting investors
The company, operated by South Korean nationals with a US corporate registration in Nevada, begins selling Ethereum mining packages internationally. Investors pay $3,200 per mining rig and are promised monthly returns of $800–$1,200.
Late 2016–2017
Seven-tier MLM structure expands globally
MiningMax recruits investors across South Korea, the United States, China, Japan, and 50 additional countries using a tiered reward system. Top-level performers receive incentives including luxury vehicles and watches worth billions of Korean won.
2017
Fabricated mining results displayed
Court documents establish that MiningMax's Korean subsidiary manipulated reported mining output using a custom software program, showing investors higher returns than the hardware was actually generating. Ethereum prices are rising during this period, providing cover for inflated reports.
October 2017
Scheme halts
MiningMax ceases investor recruitment and payments. The chairman and vice chairman, along with several top investors, flee South Korea before authorities move. Seven individuals are placed on Interpol's wanted list.
December 2017
Korean prosecutors indict 21
The Incheon District Prosecutors' Office indicts 21 MiningMax-affiliated individuals on charges of fraud and violation of South Korea's commercial law related to door-to-door sales. Fourteen are arrested; seven, including the chairman and vice chairman, remain at large.
2018
International news coverage confirms scale
South Korean press and international cryptocurrency media document the 18,000-investor victim pool, the 54-country geographic spread, and the offshore account disposition of approximately $110 million.
July 2020
California issues desist order
The California Department of Business Oversight (now DFPI) issues a Desist and Refrain Order against Mining Max, LLC and its principals, finding violations of California securities law including unregistered securities offerings and misrepresentation of fund use.
2020–2026
Chairman and vice chairman remain fugitives
Despite Interpol notices, the primary organizers of the scheme have not been extradited or arrested in connection with the cryptocurrency fraud. Korean prosecutions of the 14 arrested individuals proceed.

The Mining Rig Model: How Partial Reality Enabled Mass Fraud

MiningMax differentiated itself from cruder cloud mining frauds by selling a product with physical tangibility: investors were told they were purchasing specific mining computers — "mining rigs" at $3,200 each — that would be set up in MiningMax's facilities and operated on their behalf. Each machine was claimed to generate $800 to $1,200 per month in Ethereum, a return that, at Ethereum's late-2016 and early-2017 prices, was aggressive but not immediately implausible to investors unfamiliar with actual mining economics.

The critical fact established in the Korean prosecution was that MiningMax did purchase and operate mining hardware — approximately $80 million worth out of the $250 million collected. This means investors received a product with some real-world basis: physical machines existed, Ethereum was mined, and real returns were generated for some portion of the investor pool. The fraud lay in three interconnected distortions: the total hashrate was insufficient to deliver the promised returns across all 65,000 contracts; the custom software program fabricated higher output figures than the hardware actually produced; and approximately $110 million of investor funds were diverted to offshore accounts rather than invested in the operation.

The fabricated performance figures were particularly damaging because they prevented investors from recognizing the shortfall. An investor reviewing their account and seeing mining output consistent with the promised $800–$1,200 monthly had no reason to suspect the numbers were being generated by a manipulation program rather than by actual machine activity. The gap between displayed performance and real performance was visible only at the aggregate level — something accessible to prosecutors with court-ordered access to MiningMax's internal systems, not to individual retail investors reviewing their own dashboards.

The Seven-Tier Structure: Turning Investors Into a Distribution Network

MiningMax's seven-tier investor classification system was not incidental to the scheme — it was central to its geographic expansion. Investors who reached higher tiers by recruiting additional participants received escalating incentives: at the peak, top performers were rewarded with multi-billion-won bonuses and luxury goods including Mercedes vehicles and Rolex watches. These incentives created powerful motivation for high-level investors to expand their networks and to defend the platform against skepticism that would devalue their downstream positions.

The structure functioned simultaneously as a pyramid scheme layered on top of the cloud mining fraud. Even if MiningMax had delivered accurate mining returns, the pyramid layer would eventually have collapsed as the market of potential new investors saturated. In practice, the pyramid and the Ponzi reinforced each other: new investor recruitment provided cash flows that supplemented the insufficient mining returns in paying existing investors, while the mining narrative provided a cover story that made the opportunity appear to have legitimate revenue generation underlying the recruitment incentive.

South Korean prosecutors charged violations of the country's door-to-door sales law alongside fraud, recognizing that the MLM structure itself constituted illegal solicitation independent of the underlying fraud. The combination of charges — conventional fraud for the fabricated mining returns and statutory violations for the recruitment pyramid — established that the scheme was legally deficient on multiple grounds simultaneously. Approximately 14,000 of MiningMax's 18,000 investors were South Korean nationals who had participated through personal trust networks; the approximately 2,600 US victims had less direct recourse, given the California regulatory action's civil rather than criminal nature and the absence of a federal criminal prosecution in US courts.

The Five Factors

01
Partial Reality as Cover
MiningMax's purchase of approximately $80 million in actual hardware made the scheme fundamentally harder to detect than an entirely paper mining operation. The existence of real machines, real facilities, and real Ethereum mining output provided investors, journalists, and early regulators with genuine evidence of physical operations. The fraud lay not in the absence of mining but in the gap between actual mining output and represented output, in the software manipulation of that output, and in the diversion of $110 million to offshore accounts. Partial legitimacy is a specific fraud technique that exploits the cognitive tendency to treat partial evidence of reality as confirmation of the entire represented picture.
02
Software-Manipulated Performance Data
MiningMax's development of a custom software program to fabricate higher mining results than the hardware produced represents a deliberate technical investment in deceiving investors. This is not a case of vague misrepresentation in marketing materials — it is a purpose-built tool for generating false data that investors consumed as evidence of the operation's performance. The sophistication of this manipulation places it in the same category as HashFlare's fabricated dashboards and BitClub Network's manipulated pool statistics: a class of technical fraud in which investors have no means of detecting the manipulation from the outside.
03
Jurisdictional Fragmentation and Enforcement Gaps
MiningMax was registered in Nevada, operated by South Korean nationals, recruited from South Korea, China, the United States, and 50 additional countries, and diverted funds to offshore accounts. When Korean prosecutors moved, they could only charge violations of Korean law and could only arrest individuals present in Korean territory. US investors with $2,600 in individual losses had no practical enforcement pathway in either jurisdiction. California's desist order arrived in 2020 — three years after the scheme had already collapsed. The jurisdictional mismatch between a scheme that is designed to be global and enforcement that is inherently national created years of immunity for operators who had already exited the country.
04
Interpol List as Insufficient Deterrent
Seven individuals, including the chairman and vice chairman, were placed on Interpol's wanted list after fleeing South Korea. As of the filing date — nearly nine years after the scheme's collapse — none had been arrested on the MiningMax charges. Interpol notices are requests to member states, not arrest warrants; their effectiveness depends on the fugitive's location and the hosting country's willingness to act. For operators of large-scale international crypto fraud who place wealth offshore in advance and reside in jurisdictions with limited extradition cooperation, Interpol notices do not reliably defeat long-term evasion.
05
MLM Pyramid as Victim-Against-Victim Architecture
The seven-tier recruiting structure placed the scheme's most enthusiastic promoters — high-tier investors who had recruited extensively — in direct financial conflict with the interests of victims who might otherwise have raised concerns. A high-tier investor who had recruited 100 participants had personally benefited from those participants' investments and had reputational and financial reasons to suppress criticism of the scheme. The MLM layer did not merely expand the victim pool; it converted a portion of the victim pool into active defenders of the fraud, complicating both early detection and post-collapse victim solidarity. This victim-against-victim dynamic recurs in pyramid-over-cloud-mining structures and is absent from simpler direct-investment frauds.

Aftermath

The 14 individuals arrested in South Korea by December 2017 faced prosecution in Korean courts on fraud and commercial law charges. Specific sentence details for those convicted in Korean proceedings were not fully reported in international English-language sources as of the filing date. The chairman (Daniel Park / Nam Ho Park) and vice chairman remain on Interpol's wanted list. No criminal prosecution of MCC or its principals in US federal court had been filed as of the filing date; the California DFPI's 2020 desist-and-refrain order represented the primary US regulatory action.

Investor recovery prospects are severely limited. The approximately $110 million diverted to offshore accounts has not been publicly traced or recovered. The $80 million in hardware represents depreciating assets that were operated, at best, at partial capacity relative to what was sold. The approximately 18,000 investors — most of them in South Korea — received no formal restitution from any court or regulator as of available records.

The case contributed to South Korean regulators' increasing attention to pyramid-structured cryptocurrency investment products, accelerating the development of Korean crypto-specific enforcement frameworks. US investor groups cited the absence of federal criminal prosecution as a specific gap in domestic enforcement of internationally operated mining fraud.

Lessons

  1. The presence of real mining hardware does not validate the financial representations attached to it; investors should require independent audits of actual hash output, verified against on-chain block reward data, and should not accept operator-provided performance reports as proof that contracted returns are achievable.
  2. A seven-tier or multi-tier recruiting structure in which investors are rewarded for recruiting additional investors is a pyramid regardless of the underlying asset or activity presented as the revenue source; the pyramid structure should be evaluated independently of any mining narrative attached to it.
  3. Geographic and jurisdictional dispersal of a scheme's investors does not protect them — it protects the operators; investors in schemes operated by foreign nationals with offshore banking and multi-country corporate structures should apply heightened scrutiny to any claimed mining operations before committing capital.
  4. Interpol notices issued against fugitive crypto fraud operators have not, in several documented cases, produced arrests within years of issuance; victims of international fraud schemes should not assume that outstanding Interpol notices will translate into prosecution on any predictable timeline.
  5. National regulatory actions — such as the California desist order issued three years after MiningMax's collapse — provide legal documentation of fraud but do not substitute for timely enforcement; investors should not assume that the absence of a regulatory action in the present means a cloud mining scheme is legitimate.

References