Libeara gears up to offer tokenized Singapore dollar government bonds

South Korean FSC updates definition of virtual assets and VASP regulations for Virtual Asset User Protection ActThe South Korean Financial Services Commission (FSC) on Monday (local time) published a new enforcement decree and supervisory regulations for the Virtual Asset User Protection Act, under which non-fungible tokens (NFTs) and deposit tokens are excluded from the definition of virtual assets. The act serves to protect customer assets, prevent unfair trading practices, and enforce penalties.“The enforcement decree and supervisory regulations provide detailed standards and methods to safeguard users’ assets and establish stability in the market,” the FSC said.Photo by Tingey Injury Law Firm on UnsplashDefining virtual assetsThe agency explained that it decided to exclude NFTs because they are mainly bought and sold for collection purposes, posing low risks to holders and the financial system. However, NFTs that can be used as a means of payment for purchasing certain goods and services are considered virtual assets. On the other hand, deposit tokens — which will be managed by the Bank of Korea’s central bank digital currency network — are regarded as a legitimate form of monetary deposit and are subject to relevant regulations instead of the User Protection Act. Other “electronic certificates of economic value,” such as mobile vouchers and electronic bonds, are also excluded from the definition of virtual assets.Enhancing security and transparencyFollowing the clarified definition of virtual assets, the updated regulations underline conduct measures that virtual asset service providers (VASPs) must comply with. For example, VASPs must calculate the total value of their customers’ crypto assets every month and store at least 80% in a cold wallet to prevent infringements like hacks — a boost from the current 70 percent. Cold wallets are deemed more secure than hot wallets because they keep crypto keys offline instead of staying connected to the internet.VASPs are also not allowed to arbitrarily block deposits and withdrawals of user assets without prior notice and a justifiable reason like internal system failure or hacks as well as requests from courts, investigative bodies, the National Tax Service and financial authorities. User deposits must be stored in banks, which can invest them only in safe assets such as government bonds.The act is set to take effect on July 19 next year after a legislative review scheduled for next month.

The crypto space continues to suffer a disproportionate share of hacks and scams that were further exacerbated on Wednesday, with Malaysian crypto data aggregator the latest to succumb to a security breach. Serving as yet another stark reminder of the persistent threats plaguing the sector, a phishing scam targeted CoinGecko's X account, leading to a brief compromise that raised concerns about the safety of user information.Photo by GuerrillaBuzz on UnsplashPhishing scamDuring this incident, hackers posted a phishing link on CoinGecko's X account, falsely advertising a token airdrop for a cryptocurrency named GCKO. The deceptive post claimed that GCKO could be used for API services, including the cryptocurrency ANKR. Swift action by CoinGecko involved the removal of the fraudulent post and a public warning urging users to avoid interacting with any suspicious links or content. In an X post, CoinGecko wrote:”Our Twitter accounts @CoinGecko and @GeckoTerminal have been compromised. We're taking immediate steps to investigate the situation and secure our accounts. Please DO NOT click on any links or engage with suspicious content. Your security is our top priority.” Employee errorThe firm followed up with an update on Thursday, attributing the breach to a team member inadvertently clicking on a fraudulent Calendly link, granting unauthorized access to the hacker. Despite having two-factor authentication (2FA) enabled and employing robust security measures, CoinGecko emphasized that the inadvertent click allowed unauthorized access. The compromised accounts were then exploited to disseminate misleading information and potentially engage in malicious activities. CoinGecko expressed sincere apologies for any confusion or inconvenience caused by the incident. The company reiterated its commitment to platform security and continuous improvement of internal controls, assuring users that corrective measures were promptly implemented. SEC incompetenceCoinGecko's security incident occurred within 24 hours of a similar occurrence involving the U.S. Securities and Exchange Commission (SEC). The SEC's X account was compromised, with scammers posting a false message from Chair Gary Gensler about the approval of spot bitcoin exchange-traded funds (ETFs). While CoinGecko identified a vulnerability in its security regimen, the SEC later confirmed that the breach in its case was far more basic. It was not due to infrastructure attacks but rather the lack of 2-factor authentication (2FA) tied to the SEC's account, the most basic form of operations security. Gensler and the SEC have come in for major criticism from the crypto community in the U.S. due to a policy of regulation by enforcement that has been pursued. With that, the Commission came in for swift and harsh criticism in the immediate aftermath of its X account hack. Many pointed out the irony of Gensler advising consumers to secure their accounts back in October when the SEC itself had failed to do so. Others queried who would be responsible for what some interpreted as an episode of market manipulation, something that the SEC has perennially associated the crypto markets with. During the time that the account was compromised, millions of dollars of value were liquidated in short and long trading positions. CoinGecko's quick response serves as a valuable lesson in the importance of vigilance and proactive security measures amid the growing threats facing the cryptocurrency community.

North Korea Using DeFi for Money LaunderingThe United States Treasury issued a warning on Thursday where it identifies North Korea as a user of DeFi services for money laundering. According to the Treasury, both North Korea and criminal organizations have been using DeFi platforms to launder dirty money.©Pexels/PixabayWhile DeFi has been praised for its potential to democratize finance and provide greater financial freedom to users, it has also been criticized for its lack of regulatory oversight. According to the Treasury, this lack of oversight has made DeFi platforms an attractive target for money launderers and other criminal organizations.In its warning, the Treasury noted that North Korea has been using DeFi platforms to launder money and evade international sanctions. The country is believed to have developed a sophisticated system for laundering money through cryptocurrency exchanges, and it is now turning its attention to DeFi platforms.Illicit money movementCriminal organizations are also using DeFi services for money laundering, according to the Treasury. These groups are said to be using DeFi platforms to move money around the world, in order to avoid detection and to launder the proceeds of their illicit activities.The use of DeFi for money laundering poses a significant challenge for law enforcement agencies, as these platforms operate outside of the traditional banking system and are often difficult to track. The Treasury has urged DeFi platforms to implement strong anti-money laundering (AML) and know-your-customer (KYC) policies, in order to prevent their services from being used for criminal activities.The warning from the Treasury comes at a time when DeFi is becoming increasingly popular among investors and users. According to data from DeFi Pulse, the total value locked in DeFi protocols recently surpassed $100 billion, indicating a significant level of interest and investment in the sector.Calls for greater regulationHowever, the lack of regulatory oversight and the potential for DeFi to be used for money laundering and other criminal activities have raised concerns among regulators and policymakers. Some have called for greater regulation of the sector, in order to prevent its abuse by criminal organizations.Despite these concerns, many proponents of DeFi argue that the sector has the potential to transform the financial industry and provide greater financial freedom to users. They point to the benefits of decentralized systems, such as greater transparency, lower fees, and faster transaction times.The use of DeFi for money laundering is a complex issue that requires a multifaceted approach. While regulators and policymakers must work to implement strong AML and KYC policies, users and investors must also take responsibility for ensuring that they are using DeFi platforms in a responsible and legal manner.Ultimately, the future of DeFi will depend on how the sector is able to balance innovation and regulation. While DeFi has the potential to transform the financial industry, it must also be subject to appropriate oversight and accountability in order to prevent its abuse by criminal organizations.By working together, regulators, policymakers, and industry stakeholders can help to ensure that DeFi is used for its intended purpose — to provide greater financial freedom and empowerment to users around the world.