NEOPIN Partners with Lena Network for NFT-Fi Service Development

CUBE, a hybrid crypto exchange that settles trades on-chain using secure multi-party computation, announced on its official X account that it has listed ACS, the native token of Solana-based monetization platform Access Protocol.  The hybrid exchange utilizes its custom rewards platform, Blocks, to engage users through unique packages for listing traders and token holders. Participants in the listing will be eligible for campaign rewards.  Bartosz Lipinski, CEO and co-founder at CUBE, recently revealed plans around Isometric (ISO), an intent-based transaction network, enabling cross-chain trading to eliminate the need for asset bridging.  “When we started building Cube, we wanted everything to be an intent… Everyone will be able to submit intents to the network and verify settlements on multiple chains using the decentralised MPC that we’ve built,” Lipinski said during his presentation at the Solana Breakpoint conference. “Through the decentralised MPC integration layer, you will be able to actually use the value on different layer ones without cannibalising it,” he went on to share.  ISO will be the platform token powering governance, staking, and decentralized custody, according to Cube's announcement. Both Token and Mainnet launch are expected to happen some time in Q2 2025.  In a related development on Monday, Cube announced its partnership with the Argentinian government. The company plans to explore leveraging the Isometric network as a catalyst for the South American nation’s financial system. 

Akira ransomware, responsible for stealing $42 million from over 250 organizations across North America, Europe and Australia in just a year, is now targeting businesses in Singapore. In response, Singaporean authorities have issued a joint advisory warning local businesses about the increasing threat posed by a variant of this ransomware.Photo by Mike Enerio on UnsplashAlert follows complaintsThe alert follows multiple complaints from victims, prompting agencies like the Cyber Security Agency of Singapore (CSA), the Singapore Police Force (SPF) and the Personal Data Protection Commission (PDPC) to take action. These agencies emphasize the urgency of recognizing and combating this threat. How Akira operatesAkira affiliates employ various techniques to infiltrate a victim's network. These include exploiting known vulernabilities. For example, that could mean the targeting of services like Cisco virtual private networks (VPNs) that have been configured without multi-factor authentication (MFA). Another approach that the ransomware incorporates is attacking external-facing services such as the Remote Desktop Protocol (RDP) via brute force. Social engineering is another tool within its repertoire. This involves tricking victims into downloading malicious software or entering credentials on phishing websites. There is a marketplace for compromised credentials in the dark web. Akira also relies on such data, acquiring it from access brokers who sell network access.  Once inside a network, Akira affiliates often create new domain accounts to maintain persistent access, even after reboots. They use numerous tools to steal user credentials, escalate privileges and spread throughout the network. Detection and prevention measuresThe Singaporean advisory outlines several strategies for detecting, deterring and neutralizing Akira attacks. Authorities strongly advise against paying ransoms, on the basis that doing so does not guarantee data recovery or prevent future attacks. Authorities also warn that paying ransoms can encourage further attacks. The FBI has noted that Akira operators do not contact victims. Instead, they expect victims to initiate contact. Payment in BitcoinThe advisory outlines how Bitcoin is implicated in the ransomware scam. It states:”Ransom payments are requested in Bitcoin, which are directed to cryptocurrency wallet addresses specified by the affiliates. The TOR site (.onion) where victims contact the affiliates, contains stolen information and a list of the affected organisations.” It’s not the first time that Singaporean authorities have issued warnings that have implicated Bitcoin and crypto. In January, the CSA and SPF, in a joint advisory, suggested that people should use hardware wallets in an effort to guard against crypto-related malware and phishing attacks. A number of weeks prior to that, Singapore’s former Prime Minister, Lee Hsien Loong, took to Facebook to issue a warning with regard to a crypto scam that involved the use of deceptive content generated using artificial intelligence (AI). Mitigation techniquesBusinesses are being urged by the authorities to adopt best practices to mitigate the Akira ransomware threat. They suggest the implementation of a recovery plan alongside the use of multi-factor authentication (MFA) in order to secure data and the access to that data.  They also suggest filtering network traffic as it helps in identifying and blocking malicious activities. Meanwhile, disabling unused ports and hyperlinks curbs the risk further as it reduces the attack surface. Lastly, the authorities suggested the use of system-wide encryption to protect data even if it is accessed by unauthorized entities.

Com2uS Holdings subsidiary Com2uS Platform has acquired a certificate of Personal Information and Information Security Management System (ISMS-P), an official certificate distributed by the Korea Internet and Security Agency (KISA), for its blockchain-based game development platform Hive.Photo by Towfiqu barbhuiya on UnsplashStreamlining game developmentHive allows developers to focus on content development by providing functions for game launch and operation in a single software development kit (SDK). It covers all systems needed to run a game, including billing, gameplay across multiple platforms, global login and verification, compliance, support, analytics, promotions, push notifications, community management and blockchain middleware. It is utilized in over 150 games and 41 corporate clients with some 100 million annual users. Robust security measuresTo receive the ISMS-P certification, companies are evaluated based on 101 different criteria, including organizational structure, management of employees and facilities, security of information processing systems and more areas related to handling personal information. "Com2uS Platform and Hive have established and promoted world-class security policies," said Choi Seok-won, CEO of Com2uS Platform. "We will continue to do our best to create an environment where users and customers worldwide can safely enjoy our content." Com2uS Platform also revealed that it runs an office dedicated to information protection, which manages data from Com2uS games and external clients. The company also strives to improve its technological capabilities for enhancing security and conducts annual company-wide training for all employees to raise security awareness. Since 2017, Com2uS Platform has retained its ISMS certification – similar to the ISMS-P but without personal information security standards – to safeguard the information of its users and customers.