BOCI Partners with UBS in Hong Kong on First Tokenized Notes

Overseas Crypto Holdings Declared to Korean Tax Agency Amount to $98BIn a recent press release from the South Korean National Tax Service (NTS), it was revealed that this year, a record 5,419 Koreans declared overseas financial assets amounting to KRW 186.4 trillion. This is a notable jump from the previous year, marking a 38.1% rise in the number of declarants and an impressive 191.3% increase in the declared amount.Photo by Traxer on UnsplashRecord-breaking declarationsThese are the most significant figures reported since the 2011 inception of the overseas financial account reporting system, which requires Korean individuals and entities to disclose their foreign financial holdings, like savings, stocks, collective investment schemes, and derivatives, if their balance exceeds KRW 500 million.The NTS attributed the record-breaking figures to foreign crypto accounts, a new addition to this year’s overseas account declaration.Crypto’s dominanceVirtual assets comprised a staggering 70.2% of the total declared amount, overshadowing all other assets. 1,432 individuals and corporate entities reported crypto holdings amounting to KRW 130.8 trillion (approximately $98 billion).Decline in non-virtual assetsFor non-virtual asset accounts, including deposits, savings, and stocks, the reported figure stood at KRW 55.6 trillion, marking a year-on-year drop of KRW 8.4 trillion, or a 13.1% decline.Call for complianceIn the future, the NTS plans to leverage data shared between countries to rigorously check for potential non-compliance in reporting overseas financial accounts. Those suspected of omissions can expect strict actions, including fines, criminal charges, public name disclosure, and the collection of related taxes.After the reporting deadline, filers may be eligible for a penalty reduction of up to 90%. Importantly, tax agencies worldwide, including the NTS, are gearing up to share information like cryptocurrency transaction details under the Crypto Asset Reporting Framework. In light of this, the NTS strongly encourages those who haven’t yet reported but are obligated to to promptly declare their overseas virtual asset accounts.

Grab Turns to Web3 With Crypto Wallet IntegrationGrab, the Singapore-headquartered Asian ride-hailing firm with a user base of 180 million people, is integrating a crypto wallet into its platform.That’s according to Chinese crypto reporter Colin Wu. Wu tweeted out news of the development on Thursday, including screenshots which he had obtained that provide further detail relative to Grab’s Web3 wallet.Often dubbed the “Uber of Southeast Asia,” Grab’s foray into Web3 technology could reshape how the region engages with cryptocurrencies. This move, initially available in Singapore, aligns with the city-state’s reputation as a fintech leader and developing crypto hub, suggesting it may serve as a testing ground for Grab’s crypto integration.Photo by Afif Ramdhasuma on UnsplashPolygon wallet integrationOne pivotal aspect of this integration is Grab’s support for the Polygon wallet, a layer-2 scaling solution for Ethereum. Known for its speed and low transaction fees, Polygon aids Grab’s venture into crypto, as these characteristics feed into its practicality for everyday crypto transactions. This strategic choice aims to make cryptocurrencies more accessible and usable for the masses.Venturing beyond paymentsIt seems like Grab’s ambitions extend beyond basic cryptocurrency payments. It is also setting the stage for users to explore non-fungible tokens (NFTs) and blockchain technology. The company has provided guidance content for wallets and NFTs which would suggest that Grab’s vision goes beyond mere transactions and that it sees the potential for NFTs in terms of transforming digital ownership and other such use cases.The Web3 wallet stands out in terms of user experience. Unlike traditional crypto wallets that are reliant on private keys, Grab employs a PIN password system. This simplifies the crypto experience. This is of particular importance when it comes to trying to find ways to bring Web3 and crypto into everyday use by the mass market.Additionally, Grab introduces an account recovery system based on questions and answers, in an effort to strike a balance between security and convenience.MAS collaborationAs part of the firm’s journey into Web3, it has been collaborating with the Monetary Authority of Singapore (MAS), the city-state’s central bank and financial regulator. Together, they’ve explored digital assets, central bank digital currencies, and innovative payment systems, and it also indicates that the company is working towards including a Web3 offering while remaining in regulatory compliance.According to the company’s Q2, 2023 results, Grab records an average of 34.9 million monthly transactions.By integrating a user-friendly crypto wallet, supporting Polygon, and exploring NFTs, it appears that Grab is aiming to empower its massive user base to participate in the digital asset revolution. With Singapore as the initial launchpad, Grab’s Web3 journey holds the potential to influence how the entire region embraces cryptocurrencies.In simplifying crypto access, supporting innovative technologies like Polygon, and educating users about NFTs and blockchain, the Singaporean firm is paving the way for a more inclusive and decentralized financial future in the region.

Akira ransomware, responsible for stealing $42 million from over 250 organizations across North America, Europe and Australia in just a year, is now targeting businesses in Singapore. In response, Singaporean authorities have issued a joint advisory warning local businesses about the increasing threat posed by a variant of this ransomware.Photo by Mike Enerio on UnsplashAlert follows complaintsThe alert follows multiple complaints from victims, prompting agencies like the Cyber Security Agency of Singapore (CSA), the Singapore Police Force (SPF) and the Personal Data Protection Commission (PDPC) to take action. These agencies emphasize the urgency of recognizing and combating this threat. How Akira operatesAkira affiliates employ various techniques to infiltrate a victim's network. These include exploiting known vulernabilities. For example, that could mean the targeting of services like Cisco virtual private networks (VPNs) that have been configured without multi-factor authentication (MFA). Another approach that the ransomware incorporates is attacking external-facing services such as the Remote Desktop Protocol (RDP) via brute force. Social engineering is another tool within its repertoire. This involves tricking victims into downloading malicious software or entering credentials on phishing websites. There is a marketplace for compromised credentials in the dark web. Akira also relies on such data, acquiring it from access brokers who sell network access.  Once inside a network, Akira affiliates often create new domain accounts to maintain persistent access, even after reboots. They use numerous tools to steal user credentials, escalate privileges and spread throughout the network. Detection and prevention measuresThe Singaporean advisory outlines several strategies for detecting, deterring and neutralizing Akira attacks. Authorities strongly advise against paying ransoms, on the basis that doing so does not guarantee data recovery or prevent future attacks. Authorities also warn that paying ransoms can encourage further attacks. The FBI has noted that Akira operators do not contact victims. Instead, they expect victims to initiate contact. Payment in BitcoinThe advisory outlines how Bitcoin is implicated in the ransomware scam. It states:”Ransom payments are requested in Bitcoin, which are directed to cryptocurrency wallet addresses specified by the affiliates. The TOR site (.onion) where victims contact the affiliates, contains stolen information and a list of the affected organisations.” It’s not the first time that Singaporean authorities have issued warnings that have implicated Bitcoin and crypto. In January, the CSA and SPF, in a joint advisory, suggested that people should use hardware wallets in an effort to guard against crypto-related malware and phishing attacks. A number of weeks prior to that, Singapore’s former Prime Minister, Lee Hsien Loong, took to Facebook to issue a warning with regard to a crypto scam that involved the use of deceptive content generated using artificial intelligence (AI). Mitigation techniquesBusinesses are being urged by the authorities to adopt best practices to mitigate the Akira ransomware threat. They suggest the implementation of a recovery plan alongside the use of multi-factor authentication (MFA) in order to secure data and the access to that data.  They also suggest filtering network traffic as it helps in identifying and blocking malicious activities. Meanwhile, disabling unused ports and hyperlinks curbs the risk further as it reduces the attack surface. Lastly, the authorities suggested the use of system-wide encryption to protect data even if it is accessed by unauthorized entities.