Report paints bright picture of India’s Web3 development

RaonSecure Partners with Korean Savings Banks to Build Mobile ID Verification SystemRaonSecure, a South Korean tech security firm and blockchain solutions developer, announced yesterday its partnership with the Korea Federation of Savings Banks (KFSB) to build a system that verifies customers’ identities through mobile identification cards, according to local news outlet Financial News.Photo by Brett Jordan on UnsplashImproving customer convenienceThe KFSB has undertaken the establishment of a mobile ID verification system with the goal of improving customer convenience. This system enables mobile ID cardholders to easily verify their identities during the know-your-customer (KYC) procedures of savings banks, whether they are conducted remotely or in-person. In pursuit of this objective, RaonSecure was chosen through a selection process that sought out a company with experience in constructing mobile IDs.Blockchain-powered DID solutionRaonSecure CEO Lee Soon-hyung said the company has demonstrated its technological prowess by providing cutting-edge services based on its blockchain-powered decentralized identity (DID) platform, OmniOne. These offerings include an application tailored for civil servant IDs, along with an app specially crafted to support citizens who entered or completed military service.Under this agreement, RaonSecure will develop a system designed to ensure both convenience and security in verifying mobile IDs across the integrated computer network of KFSB’s member banks. The company has future plans to extend its services to individual banks, aiming for wider implementation and utilization.During the initial phase of the service rollout, verification will be limited to driver’s licenses. However, RaonSecure’s overarching objective is to establish a dynamic and adaptable system capable of accommodating a broader array of identification documents, such as resident registration cards, in the future.Most Korean commercial banks have already accepted mobile IDs for their identification processes. Other financial institutions, including insurance companies and card companies, are also embracing this trend and introducing similar services. This collective shift is anticipated to expedite the growth and expansion of the industry.

Netmarble F&C, a subsidiary of South Korean game developer Netmarble, has taken action to lay off employees by notifying all 70 workers under its Metaverse World project to resign, according to industry sources on Friday (KST). Metaverse World, which had begun developing an IP-based metaverse platform, will be abandoned during an upcoming corporate reorganization process. Photo by julien Tromeur on UnsplashA brief journey from ambition to abandonmentMetaverse World was launched by Netmarble in 2022 by acquiring blockchain gaming platform ITAM Games and Web3 wallet developer Bono Technologies. It had been scheduled to hold a closed beta test last year, but no news of the development has resurfaced since then.  However, it was revealed today that the project will be abandoned during the corporate reorganization process. "We have been looking for a sustainable direction to take the project, but business conditions and market changes have pushed us to make the difficult decision to terminate the Metaverse World corporation, which was developing a metaverse platform,” a representative from the company disclosed. Fluctuating trendsThe metaverse first gained traction during the COVID-19 pandemic, when gatherings were limited to online spaces. Since then, the industry and other related technologies like Web3, blockchain and NFTs also garnered significant attention, with various companies snagging investments to fund their projects. However, as the attention of tech and investment firms has shifted to AI, these companies have increasingly found themselves in difficult positions. Last September, Com2Verse, the metaverse arm of content provider Com2uS Holdings', also began streamlining its workforce, organizing voluntary retirement and transition arrangements for its employees.

The crypto space continues to suffer a disproportionate share of hacks and scams that were further exacerbated on Wednesday, with Malaysian crypto data aggregator the latest to succumb to a security breach. Serving as yet another stark reminder of the persistent threats plaguing the sector, a phishing scam targeted CoinGecko's X account, leading to a brief compromise that raised concerns about the safety of user information.Photo by GuerrillaBuzz on UnsplashPhishing scamDuring this incident, hackers posted a phishing link on CoinGecko's X account, falsely advertising a token airdrop for a cryptocurrency named GCKO. The deceptive post claimed that GCKO could be used for API services, including the cryptocurrency ANKR. Swift action by CoinGecko involved the removal of the fraudulent post and a public warning urging users to avoid interacting with any suspicious links or content. In an X post, CoinGecko wrote:”Our Twitter accounts @CoinGecko and @GeckoTerminal have been compromised. We're taking immediate steps to investigate the situation and secure our accounts. Please DO NOT click on any links or engage with suspicious content. Your security is our top priority.” Employee errorThe firm followed up with an update on Thursday, attributing the breach to a team member inadvertently clicking on a fraudulent Calendly link, granting unauthorized access to the hacker. Despite having two-factor authentication (2FA) enabled and employing robust security measures, CoinGecko emphasized that the inadvertent click allowed unauthorized access. The compromised accounts were then exploited to disseminate misleading information and potentially engage in malicious activities. CoinGecko expressed sincere apologies for any confusion or inconvenience caused by the incident. The company reiterated its commitment to platform security and continuous improvement of internal controls, assuring users that corrective measures were promptly implemented. SEC incompetenceCoinGecko's security incident occurred within 24 hours of a similar occurrence involving the U.S. Securities and Exchange Commission (SEC). The SEC's X account was compromised, with scammers posting a false message from Chair Gary Gensler about the approval of spot bitcoin exchange-traded funds (ETFs). While CoinGecko identified a vulnerability in its security regimen, the SEC later confirmed that the breach in its case was far more basic. It was not due to infrastructure attacks but rather the lack of 2-factor authentication (2FA) tied to the SEC's account, the most basic form of operations security. Gensler and the SEC have come in for major criticism from the crypto community in the U.S. due to a policy of regulation by enforcement that has been pursued. With that, the Commission came in for swift and harsh criticism in the immediate aftermath of its X account hack. Many pointed out the irony of Gensler advising consumers to secure their accounts back in October when the SEC itself had failed to do so. Others queried who would be responsible for what some interpreted as an episode of market manipulation, something that the SEC has perennially associated the crypto markets with. During the time that the account was compromised, millions of dollars of value were liquidated in short and long trading positions. CoinGecko's quick response serves as a valuable lesson in the importance of vigilance and proactive security measures amid the growing threats facing the cryptocurrency community.