Night Crows now available for global users

Surge in Hong Kong Crypto License Applications from Mainland-Linked BrokersTwo new platforms with mainland China links are preparing to apply for retail trading licenses in Hong Kong, with several others believed to be interested in following suit.According to a report published by Nikkei Asia earlier this week, the platforms, Yax and PantherTrade, have connections to mainland online securities brokers. PantherTrade is reportedly associated with Futu, a company which in turn is backed by Chinese tech giant Tencent, one of China’s largest technology companies. Yax, an emerging player in the crypto sector, has strong links to UP Fintech Holding, a Beijing-headquartered firm more commonly known as Tiger Brokers.Photo by Kanchanara on UnsplashCapital flight concernsThese connections are significant, given the previous involvement of these brokers in helping mainland Chinese customers invest in offshore assets, primarily US stocks. The firms have previously attracted the attention of China’s financial regulators. A notice from the Chinese securities watchdog in December last year compelled them to cease their “illegal cross-border business” activities.While crypto trading is banned in mainland China, an investigative report by the Wall Street Journal in August suggested that global exchange Binance was thriving in China despite the ban. Actions taken by the Chinese authorities are demonstrative of some level of concern with regard to crypto trading and potential capital flight through crypto.VASP licensingThe move by Yax and PantherTrade signals their intention to apply for a virtual asset service platform (VASP) license in Hong Kong, which would enable them to operate cryptocurrency exchanges for retail customers.Currently, both platforms are undergoing third-party assessments, a mandatory step preceding their formal application to the Securities and Futures Commission (SFC). The timeline for their applications remains uncertain.Broader interestThe growing interest in VASP licenses is not unique to Yax and PantherTrade. At least four other exchange platforms, similarly linked to mainland China, have also sought the same license, highlighting the eagerness of various players to enter the Hong Kong market. OneDegree, the sole licensed insurer for digital assets in Asia, has observed a significant uptick in license applications, including applications from traditional financial institutions, reflecting a positive trend toward educating the mass market.The SFC’s recent decision to make license application information public is an attempt to enhance transparency, following a scandal related to Dubai-headquartered crypto exchange JPEX in which over HK$1.5 billion (approximately $190 million) in virtual assets reportedly disappeared from the exchange.Currently, only two cryptocurrency exchanges, OSL and Hashkey, have received SFC approval. Others, including online brokers, have considered applying for licenses since late last year but are awaiting greater regulatory clarity before taking the plunge.Hong Kong, under the “one country, two systems” framework, has established itself as a hub for legal retail trading of cryptocurrencies. This development may signify a shift in China’s stance on digital assets and its increasing openness to crypto initiatives, as noted recently by blockchain data provider Chainalysis.

Bank of Japan Publishes Results of CBDC PoCThe Bank of Japan (BoJ) recently concluded the second phase of its central bank digital currency (CBDC) proof of concept (PoC) project, which began in April. The results of this phase were published on Monday, and they shed light on key aspects such as the comparison between account-based and token-based CBDCs and the management of holding limits for users with multiple accounts.Photo by Manuel Cosentino on UnsplashToken-based CBDCsThe experiments conducted by the central bank covered a wide range of topics. Among the most intriguing findings were the advantages and disadvantages of token-based CBDCs and how to effectively impose holding limits for users with multiple CBDC balances.Token-based CBDCs have garnered interest from various central banks, with some adopting the UTXO token model used by Bitcoin without the use of a distributed ledger. A UTXO or unspent transaction output, defines where a blockchain transaction starts and finishes. The Bank of Japan explored this model and analyzed its pros and cons.In the initial proof of concept, both account-based and token-based CBDCs were examined, considering scenarios where the central bank managed the ledger or shared it with intermediaries like banks. In the token-based model, fixed token denominations were used, similar to physical cash in countries like India, and a centralized ledger was employed. However, in the recent phase, the central bank utilized flexible value tokens similar to UTXO and shared ledger functions with intermediaries.The Bank of Japan favored the flexible value token model due to its ability to handle multiple requests simultaneously. However, it acknowledged that this model may require more technical resources compared to the account-based approach. Challenges may arise when implementing additional functions, such as holding limits, while maintaining optimal performance. The European Central Bank (ECB) also noted in a recent report that most payment providers are accustomed to account-based payments and would incur costs to adapt to token-based systems.Another significant aspect explored by the BoJ was how to impose holding limits when users have multiple CBDC balances through different intermediaries. The challenge lies in determining if the overall holding limit has been breached without compromising user privacy.Homomorphic encryptionOne possible solution discussed in the report is the use of homomorphic encryption, which enables computations to be performed on encrypted data without it first needing to be decrypted. That allows for the necessary checks without intermediaries accessing the specific data being checked. Although this solution may slightly increase processing time, it could introduce a higher risk of data inconsistencies.Alternatively, a simpler approach proposed by the central bank is to establish a per-account holding limit and a limit on the number of accounts a single user can hold, rather than imposing global limits. Ideally, users with multiple accounts would have a higher per-account holding limit compared to those with fewer accounts.Phase 3 underwayWith the next pilot phase already underway, the BoJ aims to test the end-to-end process flow and identify challenges related to integrating with external systems. Additionally, they are creating a CBDC Forum to gather input from the private sector, ensuring a collaborative approach to CBDC development.While investigation and research into CBDCs continues, the BoJ has said that it will make a final decision on CBDC implementation by 2026.

Beosin Report: Crypto Rug Pulls Surpass DeFi Exploits in MayAccording to a recent report by blockchain security firm Beosin, losses from “rug pulls” or “exit scams” in the cryptocurrency space exceeded the amount stolen from decentralized finance (DeFi) projects during the month of May.The report, published on June 1 by Beosin Blockchain Security, revealed that rug pulls and scams resulted in losses of over $45 million across six incidents during the month. Beosin is headquartered in Chengdu, in China’s Sichuan province. The firm uses formal verification methods to secure smart contracts.In general there were 22 security incidents in the digital assets space over the course of the month. That overall figure accounts for losses totaling $20 million, and represents a vast improvement on the previous month.Three of the incidents were accounted for by security issues related to hardware wallets such as the Trezor and imKey wallets. Six were rug pulls/crypto scams, two were crypto crime incidents while another implicated a critical vulnerability relative to zero-knowledge proof technology.Photo by Tara Winstead on PexelsDeFi protocol attacksIn contrast, there were 10 attacks on DeFi protocols, amounting to $19.7 million in stolen funds. This figure represents a significant decrease of nearly 80% compared to April, and the losses from these types of exploits had been declining for two consecutive months, as per Beosin’s findings.The largest rug pull incident in May involved the alleged disappearance of $32 million associated with the crypto project Fintoch on May 24. Meanwhile, the largest attack on a DeFi platform was a $7.5 million breach targeting Jimbos protocol, according to Beosin’s report.Shifting hacker strategyBeosin noted a shift in the targeting strategy of hackers and scammers, who are now increasingly focusing their attacks on ordinary users rather than various project parties. To mitigate risks, the report recommended that crypto users enhance their anti-fraud awareness, conduct thorough due diligence before investing in projects, and learn how to improve the security of their digital assets.The report also issued a warning against using shared or public charging devices for mobile phones. Beosin highlighted the potential risks associated with these devices, as they could be manipulated to inject malicious programs that compromise private keys. This caution aligns with a similar advisory issued by the United States Federal Bureau of Investigation (FBI) in April.The FBI’s Denver office cautioned against using public USB ports, including those found at airports, due to the potential introduction of malware and monitoring software onto devices. Instead, they suggested carrying a personal charger and USB cord for use with electrical outlets.As the cryptocurrency landscape continues to evolve, it is crucial for users to remain vigilant and proactive in safeguarding their investments. With the rise of rug pulls and the ongoing threats in the DeFi space, staying informed, exercising caution, and adopting robust security measures are essential for protecting one’s digital assets in this rapidly changing industry.