Bank of Korea and Samsung Team Up for Offline CBDC Research

Aptos and Lotte Group Collaborate on Pink Bear NFTs to Drive Web3 ExpansionLayer-1 blockchain network Aptos took to X (formerly Twitter) to announce a partnership with Lotte Group, an industrial conglomerate based in South Korea with a specialization in the retail business. This strategic collaboration aims to propel Lotte’s expansion into the dynamic Web3 landscape.Photo by 김 대정 on PexelsPink bear NFTsThe initial focus of their collaboration will center around Bellygom, the pink teddy bear mascot of Lotte Home Shopping — a major player in the Korean media commerce industry. NFT projects associated with Bellygom, including the Bellyland universe, are under the stewardship of Daehong Communications, a marketing solutions company affiliated with Lotte. Aptos will play a pivotal role by providing the backend support for the development of Super Jelly, a reward system within Bellyland. These Super Jelly rewards, slated to be launched on the Aptos mainnet, will be attainable through engaging in Jelly Adventures — a collection of diverse games and missions within Bellyland.Aptos and Lotte Group have expressed their enthusiasm for venturing into Web3 initiatives throughout multiple business areas of the South Korean retail giant. Aptos noted that more updates will follow as this collaboration unfolds.Earlier partnership with PolygonThe momentum behind Daehong Communications’ Bellygom NFT initiatives for global expansion grew as it joined hands with blockchain company Polygon in February. This partnership led to the migration of Bellygom NFTs from the Klaytn blockchain to the Polygon blockchain in April.Lotte’s hospitality business and NFTsIn June, Daehong employed NFTs to attract customers to various Lotte entities. Through Korea’s largest NFT trading platform, Pala, the marketing affiliate sold Magic Ride NFTs, aiming to enhance customer engagement for the Lotte World amusement park, Lotte Duty Free, and Lotte Hotels.

Korea’s Virtual Asset User Protection Act to Take Effect in July Next YearThe Virtual Asset User Protection Bill was passed during the South Korean National Assembly’s plenary session last Friday, according to a report by news agency Newsis. The legislation aims to safeguard customer assets, establish regulations against unfair trading practices, and enforce penalties. The act is scheduled to take effect one year after its passage.Photo by KS KYUNG on UnsplashDefinition of virtual assetsUnder the act, a virtual asset is defined as a digital representation of economic value that can be digitally traded or transferred. It’s important to note that central bank digital currencies (CBDCs) are not considered virtual assets. Virtual assets with characteristics of securities will initially fall under the jurisdiction of the Capital Market Act.Roles of Korea’s central bankThe act grants the Bank of Korea (BOK) the authority to request data and information from virtual asset service providers (VASPs). This provision is deemed necessary for the Korean central bank to formulate monetary and financial policies, despite virtual assets not being equivalent to traditional currencies.Responsibilities of VASPsMoreover, VASPs are obligated to segregate users’ virtual assets from their own holdings. VASPs are also required to reserve the same type and quantity of virtual assets entrusted by users and maintain a certain proportion of these assets in a cold wallet, which is an offline storage solution.Unfair trading practices will be regulated in a similar manner as outlined in the Capital Market Act. The act specifically prohibits the use of undisclosed information, price manipulation, fraudulent transactions, and trading of self-issued virtual assets. VASPs are barred from suspending deposits and withdrawals without legitimate reasons. They are also mandated to monitor suspicious transactions and take appropriate measures to safeguard users. Any suspected unfair trading practices must be promptly reported to financial authorities. Violators of these rules may face criminal penalties, liability for damages, and potential class action lawsuits.Powers of financial authoritiesThe act also clarifies the powers of financial authorities in supervising, inspecting, and taking action against virtual asset operators. Unfair trade practices can result in imprisonment for more than one year (up to 10 years for violations related to self-issued virtual assets) or fines ranging from three to five times the illicit gains. Assets acquired through unfair trade practices will be confiscated, or an equivalent value will be charged if confiscation is not feasible.Impact on crypto investigationsThe absence of legislation directly addressing unfair trading practices in the virtual asset market has posed challenges for prosecutors. They had to rely on existing statutes related to fraud, the capital market, and financial investments. Once the new act takes effect, prosecutors will no longer need to determine whether a virtual asset qualifies as a security or not.Regarding this development, a prosecutor told local legal news outlet Law Times that the implementation of the new act will escalate prosecutorial investigations into cryptocurrency incidents.Meanwhile, the individuals behind the crash of Terraform Labs’ stablecoin TerraUSD and its sister coin Luna will not be subject to this act due to the legal principle of nulla poena sine lege, which prevents the retrospective enforcement of criminal laws. Do Kwon, co-founder of Terraform Labs, was recently sentenced to four months in prison by a Montenegrin court for passport forgery after being arrested in March. The other co-founder, Daniel Shin, has been indicted by prosecutors in Korea.

Poly Network Exploit Results in Billions of Nonexistent TokensPoly Network, the China-based interoperability platform, was targeted by hackers over the weekend in a major attack that resulted in the creation of billions of tokens out of thin air. It’s the second time in as many years that the cross-chain bridge has been exploited by hackers.The attacker exploited a vulnerability in Poly Network’s cross-chain bridge tool, allowing them to generate a substantial number of tokens that previously did not exist, as reported by Arhat, the Founder of 3z3 Labs, on Twitter.Photo by Shubham Dhage on UnsplashNetwork suspensionThe Shanghai-based project team behind Poly Network promptly informed its users on Sunday that its services were temporarily suspended due to the attack. The platform assured its users that it was diligently assessing the extent of the breach and the impact on assets. They emphasized their commitment to safeguarding users’ assets and urged everyone to remain calm.The hacker, at one point, held nearly $43 billion worth of cryptocurrency in their digital wallet, according to DeBank, a decentralized finance portfolio tracker. This staggering figure was corroborated by PeckShield, a blockchain data and security firm.Bridge vulnerabilitiesBridges play a crucial role in the Web3 ecosystem, enabling users to transfer assets across different networks. However, they have often been attractive targets for hackers. In this attack on Poly Network, the hackers issued themselves nearly 100 million BNB and $10 billion worth of BUSD, the Binance-branded stablecoin, on the layer-2 network Metis, revealed Colin Wu, a Chinese crypto journalist.Similarly, on the Heco network, approximately 100 trillion units of the dog-themed meme coin, Shiba Inu, were created. Additionally, a significant number of altcoins were generated on Polygon and Avalanche networks.Illiquid Metis tokensMetis clarified that the BNB and BUSD tokens issued on its network by the hackers are effectively worthless since there is no available sell liquidity. Poly Network also locked these tokens, ensuring they cannot be utilized. Arhat of 3z3 Labs acknowledged that the impact of the Poly Network attack was somewhat mitigated by the lack of liquidity, which prevented the hackers from realizing substantial gains on Metis.However, on other networks like Ethereum, the stolen tokens were exchanged on decentralized exchanges. Arhat estimated that the attacker managed to convert only a small portion of the tokens, amounting to approximately $400,000 worth of crypto, while the remaining tokens lacked liquidity and were essentially worthless.SlowMist, a blockchain security firm, suggested that the hacker’s total gains were higher. They reported that over $4 million worth of digital assets from the attack had been cashed in, including 1,500 Ethereum worth $3 million and 93 billion SHIB worth $700,000.Poly Network had previously made headlines in 2021 when it experienced a historic attack, considered the largest exploit in decentralized finance at the time. The project suffered a loss of $600 million as funds were siphoned away from Ethereum, Binance Smart Chain, and Polygon. However, the hacker eventually returned $342 million worth of stolen crypto, and Poly Network took steps to repay affected users.