Philippine central bank tightens rules on crypto transfers

Centralized decentralized finance (CeDeFi) protocol NEOPIN is gearing up to launch NEOPIN Bridge, a platform designed to bridge the Finschia network with Ethereum Virtual Machine-based (EVM) networks like Ethereum and Klaytn. According to an official announcement via Medium on Tuesday (KST), the service will be launched by the end of February.Photo by Shubham's Web3 on UnsplashLinking ecosystemsEver since its establishment of an official partnership with the Finschia Foundation last month, NEOPIN has been developing Finschia’s first EVM-compatible bridge. The project is intended to facilitate the process of exchanging cryptocurrencies for users on the Finschia, Ethereum and Klaytn networks. This will enhance the development and liquidity of the Finschia and Klaytn ecosystems through the integration of Ethereum-based stablecoins.  Currently, NEOPIN’s DeFi protocols are accessible only through the NEOPIN Wallet. But with NEOPIN Bridge, user accessibility and convenience will be enhanced through provided support for various wallets like MetaMask, Kaikas, DOSI Vault and more. New services will also be implemented, including token swaps for users to transfer the converted Finschia tokens (FNSA) through the bridge. NEOPIN is the only DeFi protocol that simultaneously supports both the Finschia and Klaytn mainnets, who recently announced a joint proposal for the Dragon DeFi Initiative – a project to build a DeFi ecosystem active on both the Finschia and Klaytn mainnets. NEOPIN’s strengthsWith a record of zero incidents including stake slashing since 2018, along with a 99.99999% block generation rate, the protocol touts a clean track record in node validation across multiple blockchains, emphasizing its dedication to trust and stability. “NEOPIN is recognized for its robust security and reliability, serving as a role model for the Abu Dhabi DeFi regulatory framework. The launch of our self-developed NEOPIN Bridge is a significant stride towards encouraging the growth of the Finschia and Klaytn ecosystems,” said Ethan Kim, CEO of NEOPIN.

Singapore’s UniPass Plays Role in ERC-4337 Vulnerability FixSmart contract wallet provider UniPass and crypto infrastructure firm Fireblocks have successfully addressed a significant vulnerability in the Ethereum ecosystem.Photo by Nenad Novaković on UnsplashAccount abstraction vulnerabilityThis vulnerability, identified as the ERC-4337 account abstraction vulnerability, posed a critical security risk to hundreds of mainnet wallets. The joint effort between Fireblocks and UniPass was detailed in a blog post published to the Fireblocks website on Thursday.This vulnerability, if exploited, could have enabled a malicious actor to execute a complete takeover of the UniPass Wallet by manipulating Ethereum’s account abstraction process. The vulnerability represented a substantial threat to the security of smart contract wallets, as it could lead to unauthorized access and fund drainage.Improving user experienceAccount abstraction, as dealt with via ERC-4337, is a mechanism that introduces a novel way of processing transactions and interacting with smart contracts on the Ethereum blockchain. It allows for a more flexible and efficient handling of transactions, transcending the traditional distinction between externally owned accounts (EOAs) and contract accounts.EOAs are controlled by private keys and can initiate transactions, while contract accounts are governed by the code of a smart contract. When an EOA initiates a transaction with a contract account, it triggers the execution of the contract’s code. Account abstraction introduces the notion of abstracted accounts, which are not tied to a specific private key and can initiate transactions and interact with smart contracts, similar to EOAs.In the context of ERC-4337, an account executing an action relies on the EntryPoint contract to ensure that only signed transactions are executed. Typically, these accounts trust a single audited EntryPoint contract to validate user operations before executing commands. However, the vulnerability resided in the fact that a malicious or buggy EntryPoint contract could potentially skip the validation step and directly call the execution function, bypassing essential security measures.This vulnerability, identified by the two firms, had allowed attackers to seize control of UniPass wallets by replacing the trusted EntryPoint of the wallet. Once this takeover was completed, the attacker could access the wallet and drain its funds.It’s worth noting that the vulnerability posed a threat to several hundred users who had activated the ERC-4337 module in their wallets, making them susceptible to exploitation by any actor on the blockchain. Fortunately, the wallets affected by this vulnerability contained only small amounts of funds, and swift mitigation efforts were successful in preventing further harm.Company mergerEarlier this year, Singapore’s UniPass merged with Chinese wallet provider Keystone to form Account Labs, a company which has been incorporated in Singapore. At the time, Keystone founder Liu Lixin outlined that further developing account abstraction-derived products was the objective of the creation of Account Labs. He stated:“We are on the cusp of a Web3 Account Abstraction revolution. Together, we’ll drive rapid transformation, making the transition from Web2 to Web3 effortless for users. Our goal is to ensure everyone can securely and smoothly manage a decentralized account. We welcome partners to join us in advancing the Web3 account domain.”In furthering that objective, Account Labs announced on Thursday that it had raised $7.7 million in a funding round led by Amber Group, MixMarvel DAO Ventures, and Qiming Ventures.

While South Korea’s central bank has opted not to accumulate Bitcoin (BTC) at a nation-state level, North Korea has become a major holder of the leading crypto asset, albeit in a very unconventional way. The Democratic People's Republic of Korea (North Korea) is believed to currently be in possession of 13,518 BTC. That’s according to data compiled by the blockchain analytics firm Arkham Intelligence. Arkham has labeled the holding as belonging to the notorious North Korean hacking organization Lazarus Group. It’s been alleged by many observers over recent years that Lazarus is controlled by the North Korean government. Photo by Vasilis Chatzopoulos on UnsplashOn this basis, it would appear that North Korea now has a larger Bitcoin holding than the Bitcoin-friendly jurisdictions of Bhutan and El Salvador. The Kingdom of Bhutan holds 10,635 BTC through Druk Holdings and Investments (DHI), the commercial arm of the Royal Government of Bhutan.  Meanwhile, El Salvador holds 6,119 BTC. Bhutan has been accumulating Bitcoin as a consequence of Bitcoin mining activity carried out by the government in partnership with Singapore-based Bitcoin mining firm Bitdeer and others within the Asian country over recent years. El Salvador made a commitment to buy Bitcoin on an ongoing basis following its recognition of the digital asset as legal tender back in 2021. Based on Bitcoin pricing at the time of writing, Arkham’s data suggests that North Korea currently holds Bitcoin with an overall value of around $1.14 billion. It’s believed that North Korea’s overall holdings have been bumped up recently following a $1.4 billion hack of global crypto exchange Bybit last month. According to crypto data analysis firm Coin Metrics, the hack stands as one of the largest of all time.  Arkham’s data suggests that North Korea now has the third largest nation-state holding of Bitcoin, with the U.S. in first place, with 198,109 BTC, and the UK next with a holding of 61,245 BTC. Besides Bitcoin, the Lazarus Group is understood to be sitting on ETH, BNB, DAI and BUSD worth in the region of $30 million. In the immediate aftermath of the hack, the hackers moved to swap out some of the stolen Ether (ETH) for Bitcoin via the THORChain decentralized liquidity protocol. South Korea not building Bitcoin reserveWhile North Korea appears to have accumulated Bitcoin at the nation-state level through nefarious means, the Republic of Korea’s (South Korea) central bank has given an indication that it currently has no plans to accumulate Bitcoin.  According to a recent local media report, the Bank of Korea (BOK) responded in writing to a query from a Korean parliamentarian, outlining that there is no plan currently to develop a Bitcoin reserve or to stockpile Bitcoin at a national level.  The BOK is understood to have cited Bitcoin’s price volatility as a major concern. Additionally, the central bank outlined that Bitcoin doesn’t conform to the International Monetary Fund’s (IMF) guidelines relative to foreign exchange reserve management.