AsiaPay and BLOX explore crypto payments within Malaysian market

A couple of recent reports have revealed how North Korean hackers have been moving funds to a Cambodian crypto payments platform while further insight has come to light with regard to how these hackers are compromising crypto companies. Huoine PayOn July 15, Reuters reported that Cambodian currency exchange and payments firm Huione Pay had received in excess of $150,000 in digital currency from a wallet associated with notorious North Korean hacking group Lazarus. Analysis of blockchain data demonstrated that the funds had been received by the Phnom Penh-headquartered payments firm in June 2023 and February 2024. Photo by allPhoto Bangkok on Unsplash‘Pig butchering’It’s understood that Lazarus stole those digital assets from three crypto firms during the months of June and July of 2023. While Huione has suggested that it was oblivious to the origin of the funds, a blog article by blockchain analytics company Elliptic, published to its website on July 10, suggested that “Huione Guarantee is an online marketplace that has become widely used by scam operators in South East Asia.”  Elliptic went on to assert that some of these scammers employ “pig butchering” techniques, where fraudsters manipulate the victim into investing into fraudulent crypto schemes. It added that “merchants on the platform offer technology, data and money laundering services, and have engaged in transactions totaling at least $11 billion.” The National Bank of Cambodia explained to Reuters that the company is not permitted to trade crypto and that it "would not hesitate to impose any corrective measures" against Huione. The platform is believed to have strong ties to Cambodia’s ruling family. One of the firm’s three directors is understood to be a cousin of the Cambodian Prime Minister, Hun Manet. The Lazarus hacking group is believed to have masterminded a $305 million hack of Japanese cryptocurrency DMM Bitcoin in May of this year. Pseudonymous on-chain investigator ZachXBT claimed on X that $35 million of the proceeds had been laundered through the Huione platform. Compromising crypto businessesIn a related development, a report by DL News published on July 15 has found that North Korean hackers are employing a new tactic in order to compromise crypto businesses. The hackers are scanning the internet for job postings advertised by the companies they’re targeting and submitting bogus applications. A report by the United Nations Security Council has revealed that in excess of 4,000 North Koreans have taken up employment with international technology firms. Part of the social engineering-based tactics employed by the hackers includes contriving to get employees within targeted companies to install malware.  Oftentimes, the resumes and LinkedIn profiles of real people are used in order to find a way in via the recruitment process. A report by DeFiLlama suggests that $664 million has been lost via instances of crypto hacking within the first half of 2024. 

Report Cites Escalating Crypto Use by Pro-ISIS GroupsA recently published report suggests that pro-ISIS terrorist groups in central and southeast Asia and the Middle East are increasing their use of cryptocurrency.According to the report which was published on Friday by blockchain analytics firm TRM Labs, cryptocurrency has become a favored tool for terrorist organizations, with ISIS affiliates showing an increasing preference for the Tron network’s USDT stablecoin. The report highlights that terrorist groups worldwide, including those linked to ISIS, are actively utilizing cryptocurrencies for fundraising purposes, allowing them to attract supporters and bolster their operations.Photo by David McBee on PexelsOn-chain evidenceTRM Labs has been closely monitoring these activities over the past year and has uncovered a growing amount of on-chain evidence. Pro-ISIS networks in countries such as Tajikistan, Indonesia, Pakistan, and Afghanistan have been observed using crypto assets to facilitate their illicit activities, with Tether (USDT) stablecoin on the Tron network (TRX) being their preferred choice for transactions.The disturbing revelations show how recruited fighters were enticed to join ISIS’ Afghanistan affiliate (ISKP) through the use of cryptocurrency fundraising campaigns. One such campaign operated for over a year and managed an address that received approximately $2 million in USDT on Tron in 2022. TRM Labs played a role in getting the operation dismantled, leading to the arrest of Shamil Hukumatov, a senior ISIS fundraiser allegedly responsible for the scheme.Indonesia & PakistanIn Indonesia, individuals used a crypto platform to transfer over $517,000 in 2022 to addresses linked to pro-ISIS fundraising campaigns in Syria, all using USDT on Tron. This connection demonstrates the global reach and sophistication of the terrorist groups’ crypto operations.Additionally, a media unit associated with ISPP, the Pakistan affiliate of ISIS, ramped up its fundraising efforts in the latter half of 2022. The entity sought to capitalize on natural disasters, such as earthquakes in Turkey and Syria, to raise funds by publicizing various cryptocurrency addresses flagged by TRM Labs as associated with the terrorist organization.SyriaTRM Labs’ investigation ultimately points to pro-ISIS fundraising campaigns in Syria as a central hub for cryptocurrency usage by the terrorist group and its supporters. A significant portion of the donations ends up supporting ISIS families in camps like al-Hol and Roj, as well as funding local cryptocurrency exchanges that facilitate the group’s activities.For TRM Labs, the identification and tracking of these campaigns and their donors are crucial steps in mapping out and potentially disrupting pro-ISIS networks worldwide. Their efforts aim to mitigate the risks posed by the misuse of cryptocurrencies in financing terrorism and illegal activities.The rising adoption of cryptocurrencies by terrorist organizations poses significant challenges to law enforcement agencies and regulatory authorities worldwide. It’s a worrying development for legitimate users of digital assets as it may result in far more heavy-handed regulation as a direct consequence.Under these circumstances, it is crucial for the crypto community, governments, and regulatory bodies to collaborate in implementing effective safeguards against the abuse of digital currencies for nefarious purposes. Only through collective action can this threat be neutralized.

Sygnum Bank Achieves In-Principle MPI Licence Approval in SingaporeIn a significant milestone for its expansion efforts in Singapore and Southeast Asia, Sygnum Singapore has announced that it has received in-principle approval for its Major Payment Institution Licence (MPIL) application from the Monetary Authority of Singapore (MAS).Photo by Dids on PexelsOngoing global expansionThe Swiss-Singapore firm, headquartered in Zurich with an operational base in Singapore, disclosed this news via a press release published on Monday, marking a major stride forward for the company in its regulated crypto brokerage services.The world’s first digital asset bank also has offices in Abu Dhabi, the United Arab Emirates (UAE) capital, and Luxembourg. The digital assets innovation is progressing on a truly global basis. It’s also developing according to differing timelines on a regional basis relative to the regulatory approach being taken within individual jurisdictions. On that basis, we are seeing a move from many leading digital assets firms to expand internationally to benefit from jurisdictional regulatory arbitrage and in an effort to grow such businesses quickly, with a global reach.MPIL licensing significanceThe MPIL license will empower Sygnum Singapore to introduce a regulated crypto brokerage service that offers a fiat-digital asset gateway and facilitates trade execution for various cryptocurrencies. The platform aims to differentiate itself by providing competitive spreads, high liquidity, and swift trade settlements, in an effort to offer investors a seamless and efficient trading experience.This approval follows the extension of the Capital Markets Licence (CMSL) granted to Sygnum Singapore in 2022. With the CMSL extension, the company was able to launch an array of services encompassing corporate finance advisory, capital market products, and asset and security token custodial services.Wave of regulatory approvalThe approval of Sygnum Singapore’s MPIL application comes at a time when Singapore is witnessing a wave of regulatory acceptance for digital asset companies. Crypto.com and Circle are among the firms that have recently been granted full licenses, signifying a positive trend in the recognition and regulation of the digital asset industry in Singapore.Gerald Goh, Co-Founder and CEO of Sygnum Singapore, expressed his enthusiasm about the in-principle approval, highlighting its importance in the company’s growth plans: “This in-principle approval of our Major Payment Institution Licence by the MAS is a milestone in our strategic growth plans for Sygnum Singapore and South-East Asia.”He emphasized that Singapore’s regulatory framework provides the necessary clarity and confidence for investors to participate in the digital asset market: “Like Switzerland, Singapore has a progressive, robust regulatory framework that provides investors the clarity and confidence to invest in digital assets — and Future Finance — with complete trust.”The approval of the MPIL application is expected to bolster Sygnum Singapore’s position as a leading regulated digital asset service provider in the region. By obtaining this license, Sygnum strengthens its global position within the digital assets space while complementing Singapore’s efforts to develop as a regional crypto hub.