Gumi joins XPLA mainnet as newest validator

South Korea’s Financial Supervisory Service (FSS) has initiated on-site consultation services for virtual asset businesses to help them comply with the upcoming Virtual Asset User Protection Act (Virtual Asset Act), which is set to be effective in July. This news was reported yesterday by local media outlet News1. Photo by Hunters Race on UnsplashSupporting VASPs in preparation for the Virtual Asset ActThe consultation services offered by the FSS are fundamentally different from the on-site inspections that have been conducted by the Financial Intelligence Unit (FIU).  Until now, the FIU has been conducting on-site inspections to ensure virtual asset service providers (VASPs) have adequate anti-money laundering (AML) systems in place and comply with the Act on Reporting and Using Specified Financial Transaction Information (the Financial Transaction Information Act). While the FIU has been tasked with conducting inspections, the FSS’s latest on-site consultation services are dedicated to supporting businesses in developing new monitoring systems, which would enable them to prevent unfair transactions ahead of the implementation of the Virtual Asset Act. The FSS has already begun providing consultation services, with the local crypto exchange Upbit being its first client last week. An insider of FSS stated that the schedule for the on-site consultation will be arranged in advance for those seeking the service.  Demand for new FDSDuring a roundtable meeting with VASP CEOs held on Feb. 7, Lee Hyun-deok, the director of the Virtual Asset Regulatory Bureau under the FSS, emphasized the importance of coming up with a new fraud detection system (FDS) specifically designed to block unfair transactions. Most of the current FDSs within local crypto exchanges are focused on AML.  Unlike the Financial Transaction Information Act which mainly focuses on AML, the Virtual Asset Act focuses on punishing unfair trading practices that exploit abnormal price fluctuation or undisclosed information. The FSS recommends that VASPs implement a new system preventing such practices by April, as the Virtual Asset Act’s enactment is just around the corner.  An FSS insider said there is a high chance that VASPs will get the consultation service multiple times on various themes since a lot has to be done before the Act takes effect in July, adding that this consultation is to encourage VASPs to comply with the law rather than to conduct inspections on them. 

Bank of Korea and Samsung Team Up for Offline CBDC ResearchIn a move aimed at advancing central bank digital currency (CBDC) technology, the Bank of Korea (BOK) signed a memorandum of understanding (MoU) with Samsung Electronics on Monday, according to a press release. The agreement was sealed during a signing ceremony attended by Lee Seung-heon, BOK’s Senior Deputy Governor, and Choi Won-joon, Executive Vice President and Head of Development in the Mobile Experience (MX) Division at Samsung Electronics.Under the terms of the MoU, both parties have committed to ongoing research on CBDC issued by the Bank of Korea, with a specific focus on collaboration in the offline payment sector. Samsung Electronics had previously participated in the second phase of the CBDC simulation study conducted by the BOK last year.Photo by Aleksandar Pasaric on PexelsCBDC without InternetThe company’s efforts have led to the development of an offline CBDC technology that facilitates transfers and payments via near-field communication (NFC) between devices without requiring an internet connection. These transactions are conducted within the embedded secure element (eSE) chip of Samsung Electronics’ mobile devices, which holds one of the highest levels of security certification, CC EAL 6+.The Evaluation Assurance Level (EAL) is a numeric grading system that measures the security level of tech products and systems according to the Common Criteria (CC) security standard. It ranges from EAL0 to EAL7, with EAL7 representing the highest level of security.Leveraging this technology, the BOK and Samsung will continue their joint research to enhance security in offline payments using Samsung Galaxy smartphones and watches. Additionally, they aim to provide support for stable payments in situations where network connectivity is disrupted, such as during disasters.Growing interest in CBDCsGiven the global interest in CBDCs, with central banks worldwide exploring their potential, the research collaboration between the BOK and Samsung assumes great significance. The results of this partnership will guide further cooperative efforts to develop the international CBDC ecosystem.BOK Senior Deputy Governor Lee Seung-heon emphasized the significance of the joint achievement, expressing optimism that the partnership would keep Korea at the forefront of offline CBDC technology.Samsung’s Executive Vice President Choi Won-joon underscored that the company’s collaboration with the Korean central bank allowed Samsung to utilize its advanced security technology in digital currency. He expected their combined efforts would considerably contribute to the global development of CBDC technology.

Akira ransomware, responsible for stealing $42 million from over 250 organizations across North America, Europe and Australia in just a year, is now targeting businesses in Singapore. In response, Singaporean authorities have issued a joint advisory warning local businesses about the increasing threat posed by a variant of this ransomware.Photo by Mike Enerio on UnsplashAlert follows complaintsThe alert follows multiple complaints from victims, prompting agencies like the Cyber Security Agency of Singapore (CSA), the Singapore Police Force (SPF) and the Personal Data Protection Commission (PDPC) to take action. These agencies emphasize the urgency of recognizing and combating this threat. How Akira operatesAkira affiliates employ various techniques to infiltrate a victim's network. These include exploiting known vulernabilities. For example, that could mean the targeting of services like Cisco virtual private networks (VPNs) that have been configured without multi-factor authentication (MFA). Another approach that the ransomware incorporates is attacking external-facing services such as the Remote Desktop Protocol (RDP) via brute force. Social engineering is another tool within its repertoire. This involves tricking victims into downloading malicious software or entering credentials on phishing websites. There is a marketplace for compromised credentials in the dark web. Akira also relies on such data, acquiring it from access brokers who sell network access.  Once inside a network, Akira affiliates often create new domain accounts to maintain persistent access, even after reboots. They use numerous tools to steal user credentials, escalate privileges and spread throughout the network. Detection and prevention measuresThe Singaporean advisory outlines several strategies for detecting, deterring and neutralizing Akira attacks. Authorities strongly advise against paying ransoms, on the basis that doing so does not guarantee data recovery or prevent future attacks. Authorities also warn that paying ransoms can encourage further attacks. The FBI has noted that Akira operators do not contact victims. Instead, they expect victims to initiate contact. Payment in BitcoinThe advisory outlines how Bitcoin is implicated in the ransomware scam. It states:”Ransom payments are requested in Bitcoin, which are directed to cryptocurrency wallet addresses specified by the affiliates. The TOR site (.onion) where victims contact the affiliates, contains stolen information and a list of the affected organisations.” It’s not the first time that Singaporean authorities have issued warnings that have implicated Bitcoin and crypto. In January, the CSA and SPF, in a joint advisory, suggested that people should use hardware wallets in an effort to guard against crypto-related malware and phishing attacks. A number of weeks prior to that, Singapore’s former Prime Minister, Lee Hsien Loong, took to Facebook to issue a warning with regard to a crypto scam that involved the use of deceptive content generated using artificial intelligence (AI). Mitigation techniquesBusinesses are being urged by the authorities to adopt best practices to mitigate the Akira ransomware threat. They suggest the implementation of a recovery plan alongside the use of multi-factor authentication (MFA) in order to secure data and the access to that data.  They also suggest filtering network traffic as it helps in identifying and blocking malicious activities. Meanwhile, disabling unused ports and hyperlinks curbs the risk further as it reduces the attack surface. Lastly, the authorities suggested the use of system-wide encryption to protect data even if it is accessed by unauthorized entities.