Top

Singaporean authorities alert businesses to Bitcoin ransomware risk

Policy & Regulation·June 11, 2024, 6:07 AM

Akira ransomware, responsible for stealing $42 million from over 250 organizations across North America, Europe and Australia in just a year, is now targeting businesses in Singapore. In response, Singaporean authorities have issued a joint advisory warning local businesses about the increasing threat posed by a variant of this ransomware.

https://asset.coinness.com/en/news/2a60ac3f2278d1ab842181ec0c178bfb.webp
Photo by Mike Enerio on Unsplash

Alert follows complaints

The alert follows multiple complaints from victims, prompting agencies like the Cyber Security Agency of Singapore (CSA), the Singapore Police Force (SPF) and the Personal Data Protection Commission (PDPC) to take action. These agencies emphasize the urgency of recognizing and combating this threat.

 

How Akira operates

Akira affiliates employ various techniques to infiltrate a victim's network. These include exploiting known vulernabilities. For example, that could mean the targeting of services like Cisco virtual private networks (VPNs) that have been configured without multi-factor authentication (MFA).

 

Another approach that the ransomware incorporates is attacking external-facing services such as the Remote Desktop Protocol (RDP) via brute force. Social engineering is another tool within its repertoire. This involves tricking victims into downloading malicious software or entering credentials on phishing websites.

 

There is a marketplace for compromised credentials in the dark web. Akira also relies on such data, acquiring it from access brokers who sell network access. 

 

Once inside a network, Akira affiliates often create new domain accounts to maintain persistent access, even after reboots. They use numerous tools to steal user credentials, escalate privileges and spread throughout the network.

 

Detection and prevention measures

The Singaporean advisory outlines several strategies for detecting, deterring and neutralizing Akira attacks. Authorities strongly advise against paying ransoms, on the basis that doing so does not guarantee data recovery or prevent future attacks.

 

Authorities also warn that paying ransoms can encourage further attacks. The FBI has noted that Akira operators do not contact victims. Instead, they expect victims to initiate contact.

 

Payment in Bitcoin

The advisory outlines how Bitcoin is implicated in the ransomware scam. It states:

”Ransom payments are requested in Bitcoin, which are directed to cryptocurrency wallet addresses specified by the affiliates. The TOR site (.onion) where victims contact the affiliates, contains stolen information and a list of the affected organisations.”

 

It’s not the first time that Singaporean authorities have issued warnings that have implicated Bitcoin and crypto. In January, the CSA and SPF, in a joint advisory, suggested that people should use hardware wallets in an effort to guard against crypto-related malware and phishing attacks.

 

A number of weeks prior to that, Singapore’s former Prime Minister, Lee Hsien Loong, took to Facebook to issue a warning with regard to a crypto scam that involved the use of deceptive content generated using artificial intelligence (AI).

 

Mitigation techniques

Businesses are being urged by the authorities to adopt best practices to mitigate the Akira ransomware threat. They suggest the implementation of a recovery plan alongside the use of multi-factor authentication (MFA) in order to secure data and the access to that data. 

 

They also suggest filtering network traffic as it helps in identifying and blocking malicious activities. Meanwhile, disabling unused ports and hyperlinks curbs the risk further as it reduces the attack surface. Lastly, the authorities suggested the use of system-wide encryption to protect data even if it is accessed by unauthorized entities.

More to Read
View All
Policy & Regulation·

Jul 04, 2023

Regional Chinese City Enables e-CNY Bus Fare Payments

Regional Chinese City Enables e-CNY Bus Fare PaymentsIt appears with every passing week, there’s a new initiative in China to bring about greater everyday use of the digital yuan. Recent days have not disappointed with the news that Jinan, the capital of China’s Shandong Province, is introducing digital yuan payments throughout its entire bus network.The city initially conducted a pilot phase by testing central bank digital currency (CBDC) payments on two bus lines. After a successful trial period, Jinan has now implemented the new payment method across all its bus routes. According to a recent report by local media outlet Shunwang-Jinan Daily, the city has updated its card readers and bus route software to facilitate digital yuan transactions for passengers.Photo by CHUTTERSNAP on UnsplashDiscounted faresTo encourage the use of the digital yuan, Jinan is offering fare discounts to passengers who opt for CBDC payments. The announcement stated that individuals could enjoy up to two discounted rides per day and a maximum of six discounted rides per month if they choose to pay with the digital yuan.The fare discounts offered for digital yuan payments serve as an incentive for passengers to adopt the new payment method. By enjoying discounted rides, individuals are encouraged to explore the benefits and convenience of using the digital yuan, further driving its adoption in everyday transactions.The acceptance of CBDC payments for bus rides in Jinan represents a significant step towards the integration of digital currencies into everyday transactions. As China continues to expand the use cases for the digital yuan, it is likely to pave the way for further adoption and exploration of CBDCs globally.Broader adoption strategyThis move aligns with the broader initiative in China to promote the adoption of the digital yuan. In April, the city of Changshu announced that it would begin paying civil servant salaries with the CBDC, including personnel at all levels of public service, public institutions, and state-owned units, starting from May.Furthermore, China has implemented its CBDC for various purposes, such as the Belt and Road initiative and cross-border trades. In Xuzhou, a city serving as a departure point for trains transporting goods to Europe, a plan was issued in April to promote the use of the CBDC in cross-border trade.Last month, e-CNY ATMs were introduced in the resort city of Sanya to enable foreign visitors to purchase the CBDC. In May, regional authorities in Jiangsu Province set about establishing use of the digital yuan within the region’s education system.On an international level, French bank BNP Paribas has partnered with the Bank of China (BOC) to facilitate the adoption of the digital yuan. This collaboration enables BNP Paribas’ corporate clients to connect with BOC’s system, allowing for real-time transactions using the digital yuan. The partnership advances China’s desire to bring the cross-border trade capabilities of the e-CNY into play on an international basis.As China continues to lead the way in CBDC implementation and explores new use cases, the digital yuan’s influence is expected to extend globally, transforming how we transact and interact with currencies in the digital age.

news
Web3 & Enterprise·

Mar 12, 2024

Mudrex to introduce U.S. spot Bitcoin ETFs to Indian investors

Indian cryptocurrency investment platform Mudrex has unveiled plans to provide access to U.S. spot Bitcoin exchange-traded funds (ETFs) for investors within the world’s most populous country. Serving Indian institutional investorsThis initiative, as disclosed by CEO and co-founder Edul Patel in discussion with local media, marks a particularly significant milestone for Indian institutional investors who previously lacked direct access to spot Bitcoin ETFs, which were predominantly available to retail investors through U.S. stock investing firms. In its initial phase, Mudrex intends to list the top four BTC ETFs from prominent entities including BlackRock, Fidelity and Franklin Templeton. While eleven BTC ETF products currently exist in the United States, most commentators agree that there will be a consolidation with the majority unlikely to survive in the long run. Mudrex will ensure compliance by being registered with the Financial Intelligence Unit (FIU) of India. The company already provides clients with access to a diverse selection of over 350 cryptocurrencies and crypto baskets, coupled with the provision of actionable insights to help clients reach investment decisions effectively. Patel outlined the rationale behind the product offering, stating:“Seeing the increasing demand for Bitcoin spot ETFs and user requests on our platform in the past few months, we have decided to launch it for Indian investors.”Photo by rupixen on UnsplashPurchased under Liberalized Remittance SchemeMudrex ensures actual transactions are processed through broker partners in the U.S., while its Indian subsidiary facilitates the spot Bitcoin ETF service. This development unfolds amidst a nuanced regulatory environment in India, where regulatory bodies such as the Reserve Bank of India (RBI) and the Finance Ministry's Intelligence Unit hold varying stances on cryptocurrency. While the RBI remains cautious about crypto, the Finance Ministry's Intelligence Unit has registered numerous Indian crypto service providers and imposed rigorous taxation policies. Patel expanded on the alignment of spot Bitcoin ETFs with the Liberalized Remittance Scheme (LRS), a framework that simplifies overseas investments for Indian investors. The Reserve Bank of India (RBI) prescribes a limit of $250,000 per year for overseas investments by Indians under the LRS. In line with that, Mudrex is facilitating a minimum investment of $5,000 and a maximum of $250,000. Accessing spot Bitcoin ETFs through Mudrex under the LRS framework offers a more tax-efficient avenue compared to domestic crypto exchanges in India. Among Mudrex's clientele, comprising approximately 350 institutions, Patel reveals that around 20 have initiated the process of joining the platform for spot BTC ETF investments. With an anticipated average ticket size of $110,000, this demonstrates a growing appetite among institutional investors for exposure to Bitcoin ETFs facilitated through Mudrex's platform. This move by Mudrex is interesting when contrasted with recent comments made by RBI governor Shaktikanta Das, who suggested that the central bank wasn’t in favor of the offering of such products in India despite the decision by the U.S. authorities to permit spot Bitcoin ETFs. Hong Kong is working towards the approval of such products while hoping to get out in front of the competition by being the first to launch a similar Ethereum-based product. Meanwhile, the London Stock Exchange announced on March 11 that it intends to commence accepting applications for Bitcoin and Ether exchange-traded notes (ETN).

news
Policy & Regulation·

Jun 22, 2023

New Kazakh Platform Underscores Binance’s Push Eastwards

New Kazakh Platform Underscores Binance’s Push EastwardsGlobal cryptocurrency exchange Binance is making a significant move towards the East in response to mounting regulatory challenges in Western markets. The exchange has recently launched a regulated digital asset platform in Kazakhstan, marking a milestone in its expansion strategy.The announcement was made during a press conference held on June 20, attended by distinguished guests including representatives from Kazakhstan’s banking sector and Binance Kazakhstan’s leadership. The company followed up with a blog post detailing the development, published to its website on Wednesday.This milestone achievement follows Binance’s preliminary approval for operations in Kazakhstan received last August. By October, the Astana Financial Services Authority (AIFC) granted the exchange a permanent license to establish a digital asset platform and provide custodial services at the Astana International Financial Center.Photo by Engin Akyurt on PexelsBespoke platformThe newly established Binance platform in Kazakhstan aims to cater specifically to the needs of Kazakhstani users. It offers a comprehensive suite of services encompassing cryptocurrency exchange, conversion, fiat currency deposits and withdrawals, as well as custody of crypto assets.These financial services will be facilitated through a partnership with Freedom Finance Bank, Kazakhstan’s banking partner for Binance. Users of the platform will be able to transfer fiat funds to their accounts, with deposits and withdrawals currently supported through bank transfers or bank cards via Freedom Finance Bank.Adverse Western market conditionsBinance’s expansion into Kazakhstan comes at a time when the exchange is grappling with legal challenges in the United States and several European countries. In the US, Binance is currently embroiled in a lawsuit with the Securities and Exchange Commission (SEC) and the Commodity Futures Trading Commission (CFTC).Last month, Binance announced its withdrawal from the Canadian market, citing regulatory changes which the company described as “untenable.” Meanwhile, in Europe, the company has faced regulatory pushback, including an investigation into alleged “aggravated money laundering” in France and its exit from the Dutch market due to the absence of a virtual asset service provider license.Binance’s withdrawal from European markets has been attributed to its efforts to comply with the European Union’s approved Markets in Crypto Assets (MiCA) regulations, although there are reports indicating collaboration between European regulators and the SEC in their investigations into Binance.Eastern expansionWhile Binance has been facing ongoing setbacks in Western markets, it continues to expand eastwards. Late last month, the firm announced plans to establish a dedicated platform in Japan. Around the same time, it secured a trading license through its Thai joint venture company.Binance is not the only major crypto firm making a strategic shift towards Asia. Other global cryptocurrency exchanges such as Gemini and Coinbase, have also expressed their intention to strengthen their presence in the Asia Pacific region. This trend highlights a broader pattern of the crypto exchange landscape gradually shifting towards the East, reflecting a reconfiguration of the global market.As Binance expands its regulated operations in Kazakhstan, it aims to navigate the complex regulatory environment and continue providing secure and compliant services to users in a key market. The move not only positions Binance strategically but also underscores the evolving dynamics that may well be playing into a regional shift in leadership where the development of digital assets is concerned.

news
Loading