KDIC Seizes Crypto from Debtors Linked to Losses at Financial Firms

Wemade to unveil upgraded DAO platform Wepublic in FebruarySouth Korean gaming publisher Wemade’s blockchain-powered social platform Wepublic is scheduled to undergo a revamp this coming February, according to an official press release on Wemade’s website on Monday (KST).Photo by Christin Hume on UnsplashDecentralized empowermentWepublic is a platform that employs decentralized protocols to allow a wide variety of official organizations — from political and religious factions to non-profit organizations — to build and operate decentralized autonomous organizations (DAOs) based on the transparent sharing of the status of their funds.Through its integration of blockchain technology, Wepublic guarantees the transparency and integrity of all information and records stored on its platform, safeguarding them against counterfeiting and diversion. The platform notably emphasizes the ability of all participants in a DAO to partake in organizational activities and democratic decision-making.Major overhaulThe upcoming second version, Wepublic 2.0, will extend access to individuals and non-official groups. In particular, a new feature called Wepublic Point will be added, which will enable donations and further solidify the platform’s decentralized protocols. The platform will also offer connectivity with social media platforms, boosting accessibility.Wemade stated that it is currently recruiting the first cohort for Wepublic’s support group, Wepublic Supporters, which will be responsible for planning and executing promotional projects on the platform for 12 weeks starting from Jan. 25. College and postgraduate students are eligible to apply until Jan. 13. Those who stand out with their performance will get the opportunity to apply for an internship at Wemade.

The Singapore Police Force (SPF) and the Cyber Security Agency of Singapore (CSA) have jointly issued an advisory to raise awareness about the escalating use of cryptocurrency drainers in cyberattacks. The advisory aims to inform citizens about the threat and provide recommendations to protect against such attacks, with a specific emphasis on utilizing hardware wallets for enhanced security. Cryptocurrency drainers represent a form of malware that specifically targets crypto wallets. These malicious tools are often employed in phishing attacks to illicitly extract funds from users' wallets without proper authorization.Photo by Junrui Wu on UnsplashDrainer-as-a-service threatOf particular concern are commercial crypto draining kits, which empower less experienced cyber-criminals with sophisticated malware at no upfront costs. Operating on a drainer-as-a-service (DaaS) model, attackers share a predetermined percentage of the stolen funds with the service provider. The SPF and CSA underscored that crypto-drainer-related attacks typically originate from phishing campaigns. These campaigns commonly involve infiltrating verified social media accounts or dispatching fraudulent emails to users from compromised databases of major service providers. Unsuspecting victims who click on phishing links are redirected to counterfeit trading websites that prompt them to connect their Web3 wallets. Subsequently, a malicious smart contract is injected into the victim's system, enabling hackers to withdraw funds without additional authorization. MS Drainer and Inferno DrainerWhile no such attacks have been reported in Singapore to date specifically, the advisory acknowledges the rising recognition of this threat among hackers. Notably, an off-the-shelf crypto drainer called MS Drainer contributed to hackers stealing $59 million worth of cryptocurrency in 2023. Last month, Singapore-based cyber security firm Group-IB produced a report concerning the Inferno Drainer operation. According to the company’s research, the malware operation led to the theft of $80 million in digital assets globally, until the developers behind it shut it down last November. In December, the Pink Drainer hacking group notched up another victim, to the tune of $4.4 million in LINK tokens. Last week blockchain security firm Scam Sniffer reported that $10 million in digital assets had been stolen in phishing-related incidents over the course of just five days. Hardware walletsTo counteract these threats, Singapore authorities recommend the use of hardware wallets as a security measure against wallet drainer attacks. Additionally, the advisory instructs crypto investors to conduct thorough research before engaging with cryptocurrency services or platforms. Singaporeans are encouraged to report any suspicious incidents related to crypto drainers or phishing attacks to both relevant authorities and crypto service providers. In the event of a security breach, victims are urged to revoke any suspicious token approvals and promptly transfer their remaining funds to a different, secure wallet address to prevent further losses. This proactive approach aims to empower individuals with the knowledge and tools needed to navigate the risks associated with crypto drainers and foster cybersecurity awareness within the cryptocurrency ecosystem. As the threat landscape evolves relative to digital assets, this advisory serves as a valuable resource to educate citizens about the risks posed by crypto drainers.  

Cryptocurrency exchanges operating in the Dubai International Financial Centre (DIFC), a financial hub in the United Arab Emirates (UAE), entered a new compliance environment on Jan. 12 as updated Crypto Token rules issued by the Dubai Financial Services Authority (DFSA) came into force. The revised framework bars exchanges from offering certain digital assets.Photo by Christoph Schulz on UnsplashPrivacy tokens restricted to private walletsThe affected assets are privacy tokens like Zcash (ZEC) and Monero (XMR), although the restriction does not prevent Dubai residents from holding those coins in private wallets. The move is aimed at addressing anti-money laundering (AML) and sanctions compliance risks. The exclusion of privacy tokens reflects alignment with global compliance standards, according to Elisabeth Wallace, Associate Director of Policy & Legal at the DFSA. She told CoinDesk that bans of this kind are effectively inevitable if crypto businesses want to align with standards set by the Financial Action Task Force (FATF), given that privacy tokens are designed to obscure transaction histories and the identities of holders. The revised rules extend beyond token classifications, preventing regulated firms from deploying or providing tools designed to mask blockchain activity. These include mixers, tumblers, and other technologies that obscure transaction information. At the same time, the DFSA refined its classification of what it terms “Fiat Crypto Tokens,” limiting the category to tokens pegged to fiat currencies and backed by high-quality, liquid assets capable of meeting redemption requests under market stress. Under this definition, algorithmic stablecoins such as Ethena (ENA) would not qualify as stablecoins, though they would still be treated as cryptocurrencies. The update also alters how token eligibility is determined. Rather than maintaining a centralized list of approved assets, the DFSA now requires licensed firms to carry out their own assessments of the crypto assets they offer, document those judgments, and keep them under ongoing review. Thailand enforces crypto travel ruleComparable regulatory tightening is unfolding elsewhere in Asia. In Thailand, during a high-level meeting on Jan. 9, Prime Minister Anutin Charnvirakul said the Securities and Exchange Commission had been instructed to strictly enforce the travel rule, according to The Nation Thailand. The international standard requires crypto service providers to verify both senders and recipients in wallet-to-wallet transfers. The directive forms part of a broader government initiative to establish a national data bureau, envisioned as a centralized platform for real-time monitoring of suspicious transactions and the development of detailed financial risk profiles. In South Korea, enforcement actions have similarly intensified. According to Dailian, Korbit, the country’s fourth-largest crypto exchange, paid a 2.73 billion won ($1.9 million) fine imposed by the Financial Information Unit (FIU) under the Financial Services Commission (FSC) for violations of anti-money laundering (AML) rules. The payment followed a board decision and was made within a reduced-penalty period, allowing Korbit to receive a 20% discount. Crypto firms comprise 77% of Korean finesA broader review of penalties issued by the FIU since the disclosure of its sanctions guidelines shows that 77% of total fines were levied against virtual asset service providers (VASPs). While an analysis by Digital Asset found that only four of 95 fine cases issued since August 2023 involved VASPs, those cases accounted for a disproportionately large total of 41.8 billion won ($28.4 million). Exchanges fined to date include Delio, Hanbitco Korea, Dunamu—the operator of Upbit—and Korbit, with Dunamu receiving the largest penalty imposed by the FIU to date. The sanctions were linked to alleged know-your-customer (KYC) failures, unreported transactions involving individuals subject to warrants, and shortcomings in systems designed to detect suspicious activity. Separately, the FIU had issued disciplinary measures against Dunamu, including a warning to its chief executive and a three-month partial suspension of operations, which the company is contesting in court. The next hearing is scheduled for February. In overall fine totals, casinos ranked behind crypto firms, underscoring how enforcement against crypto intermediaries has been particularly robust, as oversight patterns continue to evolve.