Dunamu releases content from Upbit D Conference for free on YouTube

NFT Game Slime World’s Creator Join Forces with Blockchain Investor AssemblockKorean video game developer Nada Digital has recently announced its strategic partnership with blockchain investment fund Assemblock. The two entities will collaborate on accelerating the development and innovation of mobile games and blockchain technology with an aim to expand their presence on the global stage.Photo by Martin Martz on UnsplashSlime World and NADA Protocol TokenNada Digital’s creation, Slime World, is a blockchain-powered, play-to-earn (P2E) game whose system is underpinned by NADA Protocol Token. The NADA token is set to play the role of the key currency for the game publisher’s forthcoming blockchain services. Players can earn Orichalcum rewards during gameplay and exchange them for NADA at an in-game exchange.Assemblock’s localization consultingAs an investor and accelerator, Assemblock is involved in supporting and guiding blockchain projects in pursuit of shaping an environment for the blockchain industry. In particular, it focuses on assisting projects in successfully entering and thriving in the Korean and Chinese markets through localization consulting.Eva Yoon, CEO of Assemblock, has held positions at payment service company Danal, mobile game developer Party Games (now Nexture), and large game company NHN Entertainment. With her wealth of experience, Yoon has led initiatives to facilitate the international growth of Korean gaming enterprises and blockchain startups.

Korea’s Virtual Asset User Protection Act to Take Effect in July Next YearThe Virtual Asset User Protection Bill was passed during the South Korean National Assembly’s plenary session last Friday, according to a report by news agency Newsis. The legislation aims to safeguard customer assets, establish regulations against unfair trading practices, and enforce penalties. The act is scheduled to take effect one year after its passage.Photo by KS KYUNG on UnsplashDefinition of virtual assetsUnder the act, a virtual asset is defined as a digital representation of economic value that can be digitally traded or transferred. It’s important to note that central bank digital currencies (CBDCs) are not considered virtual assets. Virtual assets with characteristics of securities will initially fall under the jurisdiction of the Capital Market Act.Roles of Korea’s central bankThe act grants the Bank of Korea (BOK) the authority to request data and information from virtual asset service providers (VASPs). This provision is deemed necessary for the Korean central bank to formulate monetary and financial policies, despite virtual assets not being equivalent to traditional currencies.Responsibilities of VASPsMoreover, VASPs are obligated to segregate users’ virtual assets from their own holdings. VASPs are also required to reserve the same type and quantity of virtual assets entrusted by users and maintain a certain proportion of these assets in a cold wallet, which is an offline storage solution.Unfair trading practices will be regulated in a similar manner as outlined in the Capital Market Act. The act specifically prohibits the use of undisclosed information, price manipulation, fraudulent transactions, and trading of self-issued virtual assets. VASPs are barred from suspending deposits and withdrawals without legitimate reasons. They are also mandated to monitor suspicious transactions and take appropriate measures to safeguard users. Any suspected unfair trading practices must be promptly reported to financial authorities. Violators of these rules may face criminal penalties, liability for damages, and potential class action lawsuits.Powers of financial authoritiesThe act also clarifies the powers of financial authorities in supervising, inspecting, and taking action against virtual asset operators. Unfair trade practices can result in imprisonment for more than one year (up to 10 years for violations related to self-issued virtual assets) or fines ranging from three to five times the illicit gains. Assets acquired through unfair trade practices will be confiscated, or an equivalent value will be charged if confiscation is not feasible.Impact on crypto investigationsThe absence of legislation directly addressing unfair trading practices in the virtual asset market has posed challenges for prosecutors. They had to rely on existing statutes related to fraud, the capital market, and financial investments. Once the new act takes effect, prosecutors will no longer need to determine whether a virtual asset qualifies as a security or not.Regarding this development, a prosecutor told local legal news outlet Law Times that the implementation of the new act will escalate prosecutorial investigations into cryptocurrency incidents.Meanwhile, the individuals behind the crash of Terraform Labs’ stablecoin TerraUSD and its sister coin Luna will not be subject to this act due to the legal principle of nulla poena sine lege, which prevents the retrospective enforcement of criminal laws. Do Kwon, co-founder of Terraform Labs, was recently sentenced to four months in prison by a Montenegrin court for passport forgery after being arrested in March. The other co-founder, Daniel Shin, has been indicted by prosecutors in Korea.

Akira ransomware, responsible for stealing $42 million from over 250 organizations across North America, Europe and Australia in just a year, is now targeting businesses in Singapore. In response, Singaporean authorities have issued a joint advisory warning local businesses about the increasing threat posed by a variant of this ransomware.Photo by Mike Enerio on UnsplashAlert follows complaintsThe alert follows multiple complaints from victims, prompting agencies like the Cyber Security Agency of Singapore (CSA), the Singapore Police Force (SPF) and the Personal Data Protection Commission (PDPC) to take action. These agencies emphasize the urgency of recognizing and combating this threat. How Akira operatesAkira affiliates employ various techniques to infiltrate a victim's network. These include exploiting known vulernabilities. For example, that could mean the targeting of services like Cisco virtual private networks (VPNs) that have been configured without multi-factor authentication (MFA). Another approach that the ransomware incorporates is attacking external-facing services such as the Remote Desktop Protocol (RDP) via brute force. Social engineering is another tool within its repertoire. This involves tricking victims into downloading malicious software or entering credentials on phishing websites. There is a marketplace for compromised credentials in the dark web. Akira also relies on such data, acquiring it from access brokers who sell network access.  Once inside a network, Akira affiliates often create new domain accounts to maintain persistent access, even after reboots. They use numerous tools to steal user credentials, escalate privileges and spread throughout the network. Detection and prevention measuresThe Singaporean advisory outlines several strategies for detecting, deterring and neutralizing Akira attacks. Authorities strongly advise against paying ransoms, on the basis that doing so does not guarantee data recovery or prevent future attacks. Authorities also warn that paying ransoms can encourage further attacks. The FBI has noted that Akira operators do not contact victims. Instead, they expect victims to initiate contact. Payment in BitcoinThe advisory outlines how Bitcoin is implicated in the ransomware scam. It states:”Ransom payments are requested in Bitcoin, which are directed to cryptocurrency wallet addresses specified by the affiliates. The TOR site (.onion) where victims contact the affiliates, contains stolen information and a list of the affected organisations.” It’s not the first time that Singaporean authorities have issued warnings that have implicated Bitcoin and crypto. In January, the CSA and SPF, in a joint advisory, suggested that people should use hardware wallets in an effort to guard against crypto-related malware and phishing attacks. A number of weeks prior to that, Singapore’s former Prime Minister, Lee Hsien Loong, took to Facebook to issue a warning with regard to a crypto scam that involved the use of deceptive content generated using artificial intelligence (AI). Mitigation techniquesBusinesses are being urged by the authorities to adopt best practices to mitigate the Akira ransomware threat. They suggest the implementation of a recovery plan alongside the use of multi-factor authentication (MFA) in order to secure data and the access to that data.  They also suggest filtering network traffic as it helps in identifying and blocking malicious activities. Meanwhile, disabling unused ports and hyperlinks curbs the risk further as it reduces the attack surface. Lastly, the authorities suggested the use of system-wide encryption to protect data even if it is accessed by unauthorized entities.