Cheongju City Targets Cryptocurrency to Recoup Unpaid Taxes

On Thursday, South Korea’s Personal Information Protection Committee (PIPC) launched an investigation into Worldcoin’s personal data collection, processing and potential overseas transfer of sensitive personal data, the PIPC announced today via its official website. This comes after a number of complaints were filed against Worldcoin for its data collection practices.  Sam Altman’s crypto project Worldcoin gathers people’s personal data who signed up to have their irises scanned by “orbs” devices, which are currently installed in about 10 locations in Korea, including Yeouido, Pangyo and Apgujeong. The project started with the aim of distributing universal basic income to people whose jobs will be potentially replaced by artificial general intelligence (AGI) in the future. Photo by Colin Lloyd on UnsplashThe PIPC said the regulators will examine if any local privacy law has been violated by Worldcoin, and take further action in line with the Personal Information Protection Act. Following the launch of the investigation on Feb. 29, Worldcoin has withdrawn six orbs devices in Korea and stopped accepting new members. It has also suspended the distribution of the Worldcoin token (WLD) to members who have already signed up, media outlet Chosun Biz reported.  Free crypto tokens in exchange for personal data For individuals who have their irises scanned, Worldcoin rewards three WLD tokens every two weeks, which are worth approximately $22.5 (KRW 30,000) at the time of writing. The price of WLD has soared by nearly ten-fold from about KRW 1,300 last year to over KRW 13,000 today, according to the data from the local crypto exchange Bithumb. This price surge followed OpenAI’s launch of a text-to-video AI tool, Sora. The current circulating supply of WLD stands at around 100 million tokens. According to Worldcoin’s white paper, the WLD’s total supply cap will remain fixed at 10 billion tokens during the first 15 years following its launch.  The data collected from the eyeball scanning is shared on the Worldcoin blockchain, which is protected by the zero-knowledge proof technology that prevents the data from being tracked or shared with other applications. The personal data remaining in the orbs devices is deleted.  Ongoing overseas investigation on Worldcoin South Korea is not the only country that is examining Worldcoin’s personal data collection practices. The project’s processing of information has raised concerns in other jurisdictions as well, including the U.K., France, Argentina and Kenya. In the U.S., the issuance of WLD tokens has been banned by the country’s authority. 

Remitano Struck by $2.7M Alleged HackHacks have been an unfortunate constant in the crypto and DeFi space with that reality having been compounded by news that Seychelles-based crypto exchange Remitano is believed to have been the victim of a $2.7 million heist.Photo by Growtika on UnsplashSuspicious transactionsIt’s understood that the firm encountered highly suspicious transactions, with the $2.7 million having seemingly vanished from its wallet, all at the hands of a single account. The incident unfolded on Thursday and has left blockchain analysts speculating about a potential security breach.The Remitano hot wallet initiated transfers to an address devoid of any prior transaction history. These transfers amounted to approximately $1.4 million in Tether (USDT), $208,000 in USD Coin (USDC), and 104,000 ANKR tokens (valued at $2,000 at the time). Those transfers raised concerns about the security of the platform.Israeli blockchain analytics platform Cyvers promptly sounded the alarm, notifying the crypto community about these suspicious transactions that had drained significant sums from Remitano’s coffers. This sudden event raised concern within the crypto space and naturally among Remitano customers.Tether freezes wallet addressAmid the growing apprehension, Tether, the issuer of USD stablecoin USDT, took decisive action by freezing the address associated with the alleged attacker. This swift intervention effectively halted any further movement of $1.4 million worth of drained cryptocurrency. Tether’s proactive response could potentially have prevented additional loss, preserving customers’ assets from further depletion.Remitano had remained notably silent initially in the wake of this incident, declining to issue any formal statement regarding the breach. It has since acted, as on Friday, it published a statement relative to the issue on its website. The absence of communication from the exchange had only fueled greater speculation surrounding the incident. However, the statement outlined:”On September 14, 2023, our Security Management team discovered a data breach from a third-party source that had compromised some of our sensitive information. As a result, a small amount of funds from the exchange’s hot wallets were transferred to suspicious wallet addresses through unauthorized withdrawal transactions.”Remitano, recognized as a peer-to-peer cryptocurrency exchange and payment processor, primarily caters to users in emerging markets across several countries, including Pakistan, Ghana, Venezuela, Cambodia, Kenya, Malaysia, India, South Africa, Vietnam, and Nigeria.The firm sought to reassure its customers:”As of now, Remitano ensures that users’ assets have NOT been and will NOT be affected by this incident. We are working tirelessly to uphold our commitment to ensuring the security and protection of your crypto assets.”Remitano was established in 2015; it is operated by Babylon Solutions Limited, which is headquartered in the Seychelles.Unfortunately, this episode adds to the troubling trend of cryptocurrency exchange hacks witnessed in 2023. Authorities in the United States have attributed these attacks to the Lazarus Group, a notorious cyber-crime organization allegedly linked to the North Korean government which has wreaked havoc globally although disproportionately so within the Asian region.

Poly Network Exploit Results in Billions of Nonexistent TokensPoly Network, the China-based interoperability platform, was targeted by hackers over the weekend in a major attack that resulted in the creation of billions of tokens out of thin air. It’s the second time in as many years that the cross-chain bridge has been exploited by hackers.The attacker exploited a vulnerability in Poly Network’s cross-chain bridge tool, allowing them to generate a substantial number of tokens that previously did not exist, as reported by Arhat, the Founder of 3z3 Labs, on Twitter.Photo by Shubham Dhage on UnsplashNetwork suspensionThe Shanghai-based project team behind Poly Network promptly informed its users on Sunday that its services were temporarily suspended due to the attack. The platform assured its users that it was diligently assessing the extent of the breach and the impact on assets. They emphasized their commitment to safeguarding users’ assets and urged everyone to remain calm.The hacker, at one point, held nearly $43 billion worth of cryptocurrency in their digital wallet, according to DeBank, a decentralized finance portfolio tracker. This staggering figure was corroborated by PeckShield, a blockchain data and security firm.Bridge vulnerabilitiesBridges play a crucial role in the Web3 ecosystem, enabling users to transfer assets across different networks. However, they have often been attractive targets for hackers. In this attack on Poly Network, the hackers issued themselves nearly 100 million BNB and $10 billion worth of BUSD, the Binance-branded stablecoin, on the layer-2 network Metis, revealed Colin Wu, a Chinese crypto journalist.Similarly, on the Heco network, approximately 100 trillion units of the dog-themed meme coin, Shiba Inu, were created. Additionally, a significant number of altcoins were generated on Polygon and Avalanche networks.Illiquid Metis tokensMetis clarified that the BNB and BUSD tokens issued on its network by the hackers are effectively worthless since there is no available sell liquidity. Poly Network also locked these tokens, ensuring they cannot be utilized. Arhat of 3z3 Labs acknowledged that the impact of the Poly Network attack was somewhat mitigated by the lack of liquidity, which prevented the hackers from realizing substantial gains on Metis.However, on other networks like Ethereum, the stolen tokens were exchanged on decentralized exchanges. Arhat estimated that the attacker managed to convert only a small portion of the tokens, amounting to approximately $400,000 worth of crypto, while the remaining tokens lacked liquidity and were essentially worthless.SlowMist, a blockchain security firm, suggested that the hacker’s total gains were higher. They reported that over $4 million worth of digital assets from the attack had been cashed in, including 1,500 Ethereum worth $3 million and 93 billion SHIB worth $700,000.Poly Network had previously made headlines in 2021 when it experienced a historic attack, considered the largest exploit in decentralized finance at the time. The project suffered a loss of $600 million as funds were siphoned away from Ethereum, Binance Smart Chain, and Polygon. However, the hacker eventually returned $342 million worth of stolen crypto, and Poly Network took steps to repay affected users.