Kronos Research experiences significant cybersecurity breach

OKX shores up App security following bug discoveryCryptocurrency exchange OKX has swiftly responded to a recently uncovered security flaw by releasing an updated version (v6.45.0) of its iOS app.User data and asset vulnerabilityThe flaw was identified by Web3 and blockchain security specialist CertiK. It posed a Remote Code Execution (RCE) vulnerability that had the potential to compromise sensitive user data and crypto assets. Notwithstanding that, no user assets were lost or security compromised.Taking to the X social media platform on Tuesday, CertiK wrote:”Attention! We urge users of OKX wallets to update their iOS app to the latest version immediately. Earlier this month, we identified and reported a critical Remote Code Execution (RCE) vulnerability in the OKX iOS App, leading to potential compromise of sensitive data and crypto assets.”Photo by FLY:D on UnsplashPrompt responseRecognizing the risk, OKX has acted promptly to rectify the issue and commit to protecting user assets. It too followed up on social media with its own announcement:”Thanks @Certik for the note. We’ve completed the relevant upgrade & this is no longer an issue. We have verified that this did not impact any customer assets. The fix has been deployed to iOS version 6.45.0 & we recommend you update the app asap.”Ongoing exploitsThis security incident has played out amid a backdrop that has seen a worrying number of hacks, exploits and vulnerabilities in the crypto space. In recent weeks, hacks at HTX (formerly Huobi), cross-chain bridge Heco and Poloniex have accounted for millions of dollars in losses.As recently as last week, users of the Ledger hardware wallet were told by the company not to connect to decentralized applications as it had discovered that a malicious version of its Ledger Connect software had been distributed.Industry collaborationThe collaboration between OKX and CertiK in addressing this security concern is demonstrative of how industry actors are having to cooperate in order to deal effectively with these vulnerabilities and threats.Transparent communication and a swift response in this instance are likely to have played a role in minimizing any potential loss. In a noteworthy development, OKX, in collaboration with Tether, has collaborated with the United States Department of Justice (DOJ) to freeze $225 million in USDT tokens.This unprecedented action primarily targeted a human trafficking syndicate in Southeast Asia, illustrating the increasing cooperation between crypto entities and law enforcement in addressing illegal activities involving digital currencies.The immediate resolution of the iOS app vulnerability in this instance resulted in no loss occurring. That outcome underscores the importance of the prioritization of user safety and data security.With the updated app version (v6.45.0) now available, users can proceed with their crypto transactions with renewed confidence in the platform’s security measures. As the cryptocurrency landscape evolves, crypto platforms and platform users will need to remain vigilant in order to safeguard and protect funds.

Zodia Custody to Commence Yield Offering on StablecoinsIn a play that’s designed to entice institutional investors, Zodia Custody, a portfolio company of Japanese financial services conglomerate SBI, is gearing up to offer a yield on digital assets.Photo by CoinWire Japan on UnsplashIntroducing “Zodia Custody Yield”The crypto startup has introduced “Zodia Custody Yield,” a crypto staking option designed to reward holders of crypto assets stored within its platform. The initiative has been launched in partnership with Singapore-based DeFi platform OpenEden. It promises returns on stablecoins although full details on the offering remain undisclosed.Jeremy Ng, Co-Founder of OpenEden, expressed his belief in the potential of cryptocurrencies to generate substantial passive income for their holders. Ng stated:“There are billions of dollars worth of stablecoins sitting on the sidelines when they could easily be generating yields for investors.”TradFi embracing digital assetsZodia’s move aligns with a growing trend in the financial industry. Yesterday, a leading US bank, Citi, disclosed its collaboration with Maersk to facilitate services that convert funds into digital assets. The primary goal is to enable the bank’s customers to execute nearly instantaneous payments, unrestricted by traditional business hours.Simultaneously, several prominent asset management firms are awaiting a pivotal decision from the Securities and Exchange Commission (SEC) regarding their applications to launch a spot Bitcoin exchange-traded fund (ETF). This list includes major players such as BlackRock, Invesco, WisdomTree, ARK Invest, Valkyrie, and Franklin Templeton. BlackRock, the frontrunner in the efforts being expended towards ETF approval, submitted its application for a spot Bitcoin ETF on June 16.In a recent interview, Bloomberg analyst Eric Balchunas said that he expects $150 billion in capital to flow into the Bitcoin market within two years of a spot Bitcoin ETF approval in the US.The financial strategies of these entities now prominently feature blockchain and crypto-based products, once considered niche but now integral to their operations. Nonetheless, even with widespread anticipation of the approval of BlackRock’s ETF, the firm faces substantial obstacles. US regulators have subjected BlackRock to intense scrutiny due to concerns regarding its ties to China. Additionally, political figures have criticized the asset manager for prioritizing environmental, social, and governance (ESG) criteria over investor returns.Zodia was spun out of British multinational banking firm Standard Chartered. The bank has a positive outlook relative to crypto. In a bold prediction made in June, the UK-based bank forecasted that the value of Bitcoin could potentially surge to $50,000 by the end of the year, with an even more optimistic projection of $120,000 for 2024.In 2021 Standard Chartered, in collaboration with Northern Trust, a leading asset servicing firm, founded Zodia Custody. Since its inception, the venture has garnered a respectable level of success. It successfully secured $36 million in investments and solidified a partnership with SBI Digital Asset Holdings, enabling its expansion into the Japanese market.In May, the firm launched its crypto custodian service in Dubai, having signed a memorandum of understanding (MOU) with the Dubai International Financial Center (DIFC). In June, Zodia partnered with blockchain infrastructure provider Blockdaemon, in an effort to further its crypto staking offering. Earlier this month, the company announced its arrival in Singapore, with a view towards expanding its digital asset custody service there.

Indian Railways (IR), the state-owned manager of India’s railway network, plans to issue non-fungible token (NFT)-based train tickets to transport pilgrims to Maha Kumbh Mela, the world’s largest religious festival. The Hindu festival is of particular significance given that it only occurs once every 144 years. ChainCode Consulting partnership According to a report published by Indian news outlet Pune.news on Jan. 13, IR has collaborated with ChainCode Consulting, a Bangalore-headquartered enterprise blockchain development and consulting firm, to provide the digital tickets. The Polygon blockchain has been chosen as the network upon which the NFT tickets will be minted. The tickets will then be made available to end users via NFTtrace, a real-world assets (RWA) tokenization and traceability platform run by ChainCode Consulting.Photo by Choong Deng Xiang on UnsplashLong-running collaborationService users and railway personnel will be free to check the validity of tickets on the public blockchain. This announcement is just the latest installment of a long-running collaboration between ChainCode Consulting and IR. In March 2024, a similar project was pursued by both parties. On that occasion, the collaboration involved the release of a series of NFT tickets for use on a train line running from Lucknow, the capital of the Indian state of Uttar Pradesh, to the Indian capital, New Delhi.  In that instance, NFTs were minted on the Hyperledger blockchain. A previous collaboration, earlier in 2024, saw NFTs minted on Polygon for digital tickets covering journeys to the sacred Hindu city of Ayodhya. Commenting on the choice of Polygon relative to this latest collaboration, Alok Gupta, CEO of ChainCode Consulting, stated: “By partnering with IRCTC and leveraging the Polygon blockchain, we are enabling a digital-first experience that complements the spiritual and traditional significance of the Mahakumbh while introducing a new level of engagement through NFTs.” Polygon is an Ethereum ecosystem scaling network. With that, it has fast throughput and low gas fees and it's on this basis that it’s understood that Polygon was chosen in this instance. Aishwary Gupta, global head of payment and fintech at Polygon Labs, the key developer behind the Polygon blockchain, told Cointelegraph that public blockchains are playing an important role in doing away with middlemen and intermediaries.  The Polygon Labs executive stated that at both state and central government levels in India, Polygon has been used on a number of projects. He added: ”With its low cost and high throughput, we are sure that the NFTs being issued around Maha Kumbh Mela would be yet another great success.” $94 billion market opportunityTicketing remains one of the proposed use cases for blockchain technology that has the potential to gain traction. That potential hasn’t gone unnoticed by ticketing industry leader Ticketmaster. In 2023 the company rolled out token-gated ticket sales. The feature enables artists to reward fans who hold NFTs with access to exclusive pre-sale events, prime concert seating and many other incentives and rewards. NFT technology offers a solution to a number of issues experienced within the events industry, including ticket scalping, fake tickets and security issues. The live events business is a $94 billion industry, underscoring the opportunity available to be exploited by innovative NFT-based ticketing startups.