Binance Explores Stablecoin Issuance on MUFG Progmat Coin Platform

Akira ransomware, responsible for stealing $42 million from over 250 organizations across North America, Europe and Australia in just a year, is now targeting businesses in Singapore. In response, Singaporean authorities have issued a joint advisory warning local businesses about the increasing threat posed by a variant of this ransomware.Photo by Mike Enerio on UnsplashAlert follows complaintsThe alert follows multiple complaints from victims, prompting agencies like the Cyber Security Agency of Singapore (CSA), the Singapore Police Force (SPF) and the Personal Data Protection Commission (PDPC) to take action. These agencies emphasize the urgency of recognizing and combating this threat. How Akira operatesAkira affiliates employ various techniques to infiltrate a victim's network. These include exploiting known vulernabilities. For example, that could mean the targeting of services like Cisco virtual private networks (VPNs) that have been configured without multi-factor authentication (MFA). Another approach that the ransomware incorporates is attacking external-facing services such as the Remote Desktop Protocol (RDP) via brute force. Social engineering is another tool within its repertoire. This involves tricking victims into downloading malicious software or entering credentials on phishing websites. There is a marketplace for compromised credentials in the dark web. Akira also relies on such data, acquiring it from access brokers who sell network access.  Once inside a network, Akira affiliates often create new domain accounts to maintain persistent access, even after reboots. They use numerous tools to steal user credentials, escalate privileges and spread throughout the network. Detection and prevention measuresThe Singaporean advisory outlines several strategies for detecting, deterring and neutralizing Akira attacks. Authorities strongly advise against paying ransoms, on the basis that doing so does not guarantee data recovery or prevent future attacks. Authorities also warn that paying ransoms can encourage further attacks. The FBI has noted that Akira operators do not contact victims. Instead, they expect victims to initiate contact. Payment in BitcoinThe advisory outlines how Bitcoin is implicated in the ransomware scam. It states:”Ransom payments are requested in Bitcoin, which are directed to cryptocurrency wallet addresses specified by the affiliates. The TOR site (.onion) where victims contact the affiliates, contains stolen information and a list of the affected organisations.” It’s not the first time that Singaporean authorities have issued warnings that have implicated Bitcoin and crypto. In January, the CSA and SPF, in a joint advisory, suggested that people should use hardware wallets in an effort to guard against crypto-related malware and phishing attacks. A number of weeks prior to that, Singapore’s former Prime Minister, Lee Hsien Loong, took to Facebook to issue a warning with regard to a crypto scam that involved the use of deceptive content generated using artificial intelligence (AI). Mitigation techniquesBusinesses are being urged by the authorities to adopt best practices to mitigate the Akira ransomware threat. They suggest the implementation of a recovery plan alongside the use of multi-factor authentication (MFA) in order to secure data and the access to that data.  They also suggest filtering network traffic as it helps in identifying and blocking malicious activities. Meanwhile, disabling unused ports and hyperlinks curbs the risk further as it reduces the attack surface. Lastly, the authorities suggested the use of system-wide encryption to protect data even if it is accessed by unauthorized entities.

It's been nearly ten years since the infamous collapse of the Japanese bitcoin exchange Mt. Gox, with some creditors of the defunct business now claiming to have finally received their long-awaited repayments.Photo by Su San Lee on UnsplashSubreddit payment confirmationsTestimonies shared on the Mt.Gox creditor subreddit and a dedicated Telegram channel reveal that certain payments, in the form of Japanese yen, have been distributed to creditors who opted for PayPal as their preferred mode of receipt. Excitement marked the early stages of this repayment process. Users on Reddit joyfully shared their experiences, with one exclaiming:"I got money!! I just got my initial payment via Paypal!!"This development comes after Mt.Gox rehabilitation trustee, Nobuaki Kobayashi, had previously extended the repayment deadline from Oct. 31, 2023, to Oct. 31, 2024. However, last month, Kobayashi informed creditors that certain cash repayments would be initiated before the year's end. Despite efforts to expedite the process, the sheer volume of creditors and the complexities involved mean that repayments will continue into 2024. The collapse of Mt.Gox in early 2014 triggered global regulatory responses and initiated a nearly decade-long bankruptcy and corporate rehabilitation process. The exchange fell victim to a series of hacks between 2011 and 2014, leaving a lasting impact on the cryptocurrency landscape. The commencement of repayments has been hanging over the crypto market for many years, with many fearing that the process may have a dampening effect on the bitcoin unit price, given that funds are being distributed in Japanese yen and bitcoin. Earlier this year, the U.S. government indicted two Russian nationals for laundering funds stolen from Mt.Gox, shedding light on the enduring legal ramifications stemming from the exchange's demise. Double payment glitchHowever, it appears the process encountered some glitches, as other Reddit posts indicated that a few creditors received double payments via PayPal, adding a new layer of complexity to the already intricate Mt. Gox saga. Reddit users, such as u/rlycreativename, have shared emails they claim to have received from the Mt.Gox Rehabilitation Trustee. The emails acknowledge a system issue leading to inadvertent double transfers and legally obligate recipients to return the surplus amount. While some users have complied with the request and returned the duplicated funds, others have expressed hesitancy, citing the historical challenges creditors faced in obtaining their money. The situation has evoked discussions on Reddit, with users debating whether the Trust deserves a swift return, considering the prolonged struggle creditors endured to reclaim their funds. While it may be tempting for some creditors to hold on to the duplicate payment, such a decision may only serve to heap more misery on long-suffering Mt.Gox creditors. The recent case of Jatinder Singh and Thevamanogari Manivel would be very relevant for creditors to consider. Singh was a customer of well-known digital assets platform Crypto.com. In 2021 the firm inadvertently transferred $10 million to his account. Singh conspired with Manivel to withdraw and keep the funds. A community corrections order of 18 months has been imposed on Manivel in Australia while Singh will be sentenced in February.  

Singapore Takes Lead in Regulating StablecoinsSingapore has taken a proactive step by finalizing regulations for stablecoins, solidifying its position as one of the first jurisdictions to do so on a global scale.The Monetary Authority of Singapore (MAS) has established a comprehensive framework that outlines essential prerequisites for stablecoin operations, according to an announcement made by the central bank on Monday.Key highlights include:Reserve Backing: Stablecoins must be backed by reserves consisting of low-risk and highly liquid assets. The value of these reserves should equal or surpass the circulating stablecoin value at all times.Prompt Redemption: Stablecoin issuers are mandated to return the par value of the digital currency to holders within five business days upon redemption requests.Transparency: Issuers must furnish users with “appropriate disclosures,” including audit outcomes of the backing reserves.These regulations will be applicable to stablecoins issued in Singapore that mirror the value of the Singapore dollar or any G10 currency, such as the US dollar. Stablecoins meeting all the requirements outlined by the regulations will receive recognition from the regulator as “MAS-regulated stablecoins.” This distinct categorization will differentiate them from tokens lacking regulation.Photo by CoinWire Japan on UnsplashKey roleWith a market valuation of approximately $125 billion, stablecoins have rapidly emerged as a significant force within the crypto space. Leading the pack are Tether’s USDT and Circle’s USDC, which together command around 90% of the market’s total value.Stablecoins play a key role in the crypto trading market. They allow traders to move in and out of various cryptocurrencies and back into fiat. However, despite their immense influence, stablecoins have largely remained unregulated across the globe. While their primary use has been in trading, stablecoin proponents assert their versatility in various applications, including remittances.Digital currency hubSingapore has been actively positioning itself as a hub for digital currencies, striving to attract foreign companies seeking refuge from the crypto industry’s apprehensions surrounding the current unwelcoming US regulatory approach.Despite their prevalence, stablecoin issuers have faced criticism regarding the transparency of their reserve holdings. Singapore’s regulatory measures aim to bring increased clarity to this sector.Ho Hern Shin, Deputy Managing Director of Financial Supervision at MAS, expressed that the framework’s purpose is to enable stablecoins to serve as a credible digital medium of exchange and bridge the gap between fiat and digital asset ecosystems.Positive industry responseLeading stablecoin firms, Tether and Circle, have applauded Singapore’s new regulations. Yam Ki Chan, Vice President of Strategy and Policy for APAC at Circle, stated that MAS is at the forefront of forward-looking regulators globally, establishing a transparent regulatory framework for stablecoins and digital assets. Paolo Ardoino, CTO of Tether, hailed the framework for providing a clear structure, accountability, and transparency in stablecoin operations within Singapore.The collapse of algorithmic stablecoin UST last year drew regulatory attention to this category of stablecoins. Unlike traditional stablecoins like USDT and USDC, UST was governed by an algorithm and lacked real-world assets as reserves.Singapore’s stablecoin regulations have placed it in a select group of jurisdictions pioneering such rules. Hong Kong is presently undergoing public consultation on stablecoins and plans to introduce regulations in the coming year.