If all precautions are taken, hacking a cold wallet is almost impossible. The main advantage of cold storage is the lack of a direct connection to the Internet, which eliminates remote attacks. But the key word here is "almost". Any security system depends on the human factor
If a person makes a mistake themselves (for example, enters the seed phrase on a fake website, loses it, or writes it down in digital form). If the wallet was compromised before purchase (for example, ordered from a third party and reprogrammed by attackers). If someone gains physical access to the device and finds a way to hack it (which is unlikely, but possible under a high level of threat). Therefore, if the seed phrase is securely hidden and the hardware wallet is used correctly, hacking is unrealistic for ordinary hackers. The danger comes only from government agencies, special services, or high-level attackers who may attempt to crack the wallet if they have enough resources and time.
So, the story about North Korean boys is being evaporated from us. Who will pass on the unfamiliar, especially to North Koreans, the seed phrase of their wallet?