Bybit Gets Outline Approval to Operate in Kazakhstan

The Monetary Authority of Singapore (MAS), the city-state’s central bank and primary financial regulator, has set a deadline of June 30 for unlicensed digital token service providers (DTSPs) working out of Singapore to cease offering their services to clients in overseas markets.Photo by Hu Chen on UnsplashResponding to feedbackThe deadline emerged by way of a process MAS has followed as part of the Financial Services and Markets Act 2022 (FSM Act). Last October, the regulator invited feedback from stakeholders related to the authority’s approach to the regulation of DTSPs. MAS published its response to that feedback on May 30.  It stated:”DTSPs which are subject to a licensing requirement under section 137 of the FSM Act must suspend or cease carrying on a business of providing DT services outside Singapore by 30 June 2025.” It added that it was not including any transitional arrangement for DTSPs despite MAS receiving such a suggestion from a number of feedback respondents. Instead, unlicensed DTSPs will need to abide by the June 30 deadline and have acquired a license by then or cease unlicensed activity.The regulator defines DTSPs as individuals, partnerships or Singapore corporations operating from a place of business in Singapore, including those formed or incorporated in Singapore who offer digital token services outside Singapore. Those found in breach of the regulation could face up to three years in prison and fines of up to S$250,000 ($195,000). Companies who have already obtained licensing or those exempted by way of the Securities and Futures Act, Payment Services Act and the Financial Advisers Act are free to continue trading. Challenging licensing requirementsThose who wish to become compliant will have to satisfy some challenging requirements. For those granted a license, an annual license fee of S$10,000 ($7,780) applies. Small-scale DTSPs need to satisfy a $150,000 ($116,670) ongoing capital requirement, while larger, well-established DTSPs must comply with a S$250,000 ($195,000) capital requirement. Additionally, MAS has put in place competency requirements related to a DTSP's CEO, directors, partners and managers. Hagen Rooke, a partner at law firm Gibson, Dunn & Crutcher, outlined on LinkedIn that while it's possible for unlicensed operators to obtain licensing, it will be very difficult to get a license. In its feedback response document, the regulator stated: “MAS will approach the licensing of DTSPs in a prudent and cautious manner and there will be extremely limited circumstances under which MAS will consider granting an applicant a licence under section 138 of the FSM Act.” Rooke advised crypto companies that may be affected to act swiftly in order to derisk through an operational restructuring or removing the businesses' Singapore touchpoints. He suggested that firms need to consider if it has customers outside of Singapore or front-office functions located outside of the city-state to determine if they could be affected by this regulatory measure. A number of Asian countries have moved to take action against unlicensed foreign firms that have engaged with local investors, with Thailand becoming the latest country to do so recently. However, the Singaporean authorities have approached the issue from the opposite perspective, citing the potential reputational risk that unlicensed DTSPs pose for Singapore.

At the end of last month, social derivatives trading platform ZKX, a protocol that runs on the Ethereum-centric Starknet layer-2 network, shut down blindsiding the project’s stakeholders. That event has led to Singapore-headquartered digital assets firm Amber Group speaking out, calling for cryptocurrency projects to be more accountable and transparent going forward. Not economically viableNews of the project shutdown emerged when ZKX founder Eduard Jubany Tur took to X on July 30 to outline the discontinuation of the protocol. Tur claimed that the project was “unable to find an economically viable path for the protocol.” In a long-form post, the ZKX founder outlined that user engagement had been minimal, resulting in disappointing trading volumes. By extension, Tur claimed that revenues didn’t come anywhere close to covering cloud server expenses. “The market is undervaluing the work done and infrastructure built by appchains and dApps coming from ecosystems like ours,” Tur added. Pseudonymous blockchain sleuth ZachXBT had a different take on the matter, claiming that the shutdown represented a rug pull. Amber Group chimed in on the subject on X on Aug. 3. Amber suggested that it wouldn’t break any contractual non-disclosure obligations it had with regard to ZKX but that aside, the firm took the opportunity to share its perspective more broadly in an effort to promote transparency.Photo by Markus Spiske on PexelsAmber Group criticismAmber Group criticized the ZKX team on the basis of a lack of transparency. It stated: “The last update we received was on July 30, when the project announced the cessation of operations. This decision was made without prior communication, highlighting the importance of transparency in our industry.” Staying with that theme, it claimed that clear communication and transparency are essential for fostering trust and collaboration within the crypto community, and that such principles would guide future projects. Amber Group had acted as a market maker relative to the ZKX project. It borrowed and purchased ZKX tokens in support of the launch of the token and in an effort to support token liquidity post-launch. It had secured two million ZKX tokens from the open market, with its overall holding totaling three million ZKX tokens. Project investor HashKey Capital also took to the X social media platform on the subject. Like Amber Group it too criticized the ZKX project for its lack of accountability and transparency. It described the project’s reluctance to communicate as “disappointing,” while it asserted that Tur’s handling of the situation had been “regrettable.” Ye Su, founding partner at ArkStream Capital, expressed a similar complaint, stating on X that “when ZKX shut down, as investors, we got zero heads-up.” He also singled out Tur, claiming that “Edward took the money from early supporters without any communication, showing no moral standards and losing his right to future entrepreneurship in the industry.”

Phemex, a Singapore-headquartered crypto derivatives trading platform, has halted withdrawals following a multi-million dollar hack.Photo by GuerrillaBuzz on UnsplashHot wallet compromisedIn a message to platform users published to social media, the project stated: “To ensure security, withdrawals have been temporarily suspended while we conduct an emergency inspection and strengthen wallet services. We sincerely apologize for the inconvenience. Withdrawals will be restored soon.” In further commentary, the project apologized for the disruption, assuring service users that its mission remains to provide a trusted trading environment, while outlining that it is working on putting together a compensation plan. It added that “Our ongoing business operations are fine,” and that “trading services continue as usual.” The digital assets were removed from the platform over multiple blockchains including Polygon, Arbitrum, the Base network and BNB. Blockchain analytics firm Lookonchain itemized some of the assets that are believed to have been stolen. They include 3.48 million USDC stablecoin, 3.42 million USDT stablecoin, 841 ETH valued at $2.7 million, 110,701 LINK valued at $2.69 million, 142 billion PEPE tokens valued at $2.12 million, 1.19 million FET tokens valued at $1.45 million and 29,509 AVAX tokens valued at $1.04 million. Initial reports put the loss at $31 million. However, Web3 security firm Cyvers later claimed that $37  million covers the full extent of the loss. Following deeper analysis, it found that both Bitcoin and TRON blockchains had also been impacted, resulting in the overall loss being increased by a further $6 million. Cold wallet assets are safeThe company’s CEO Federico Variola, published a post on X advising service users that all of the assets held within the company’s cold wallets remain safe. He included a link to the Phemex proof of reserves, encouraging customers to check it. In a follow-up post, he wrote: “We are currently carefully testing our system to reprise withdrawals as soon as possible. Due to the sophistication of the threat actor we cannot rush this stage. The estimated timeline to reprise full operations is within 24h, thank you for your support.” The XNET Foundation, a non-profit entity that develops decentralized wireless networks, said that it is actively working with the Phemex team on the production of an exploit report following the incident. It added that “It has been confirmed that tokens sent to the exchange for a launchpad pool were compromised as part of this exploit.” Ongoing problemCrypto hacking remains a major concern within the digital assets sector. Blockchain security firm PackShield reported recently that $1.3 billion had been laundered from crypto hacks in 2024. That statistic demonstrates that the problem is worsening as it accounts for a $342 million or 280% increase when compared with 2023. In December a Chainalysis report found that 61% of the hacking losses suffered in 2024 implicated the involvement of North Korean hackers. It estimated crypto hacking losses of $2.2 billion for 2024, based on losses associated with 303 hacking incidents.