Silver lining for Bybit with UAE trading license approval

South Korea’s largest crypto exchange, Upbit, suffered a security breach on Nov. 27 that resulted in the theft of 44.5 billion won ($30.4 million) in digital assets, all taken from the exchange’s hot wallets. The stolen tokens were all Solana-based, and Upbit CEO Oh Kyoung-suk said in a statement that no users will incur losses, as the company will cover the full amount with its own reserves.Photo by FlyD on UnsplashHot-wallet breach hits 24 tokensThe exchange said in a statement that the compromised tokens were transferred to an unknown external wallet at around 7:42 p.m. UTC on Nov. 26. In total, 24 cryptocurrencies were affected, all within the Solana ecosystem. The stolen assets ranged from infrastructure tokens such as Solana (SOL) to staking-related assets like Jito (JTO), along with the stablecoin USD Coin (USDC) and memecoins including Bonk (BONK), Moodeng (MOODENG), and Official Trump (TRUMP). According to Oh, the breach was followed by an emergency security review of the affected networks and wallets. He added that all remaining assets were moved to cold storage to prevent further unauthorized transfers. Oh also said the exchange is working to trace the stolen assets and block on-chain movements wherever possible, noting that Solayer (LAYER) tokens worth 2.3 billion won ($1.6 million) have already been frozen. Upbit is also reaching out to relevant projects and institutions for assistance. This marks Upbit’s second theft case. The first took place on Nov. 27, 2019, exactly six years ago to the day, according to News1. Authorities focus on Lazarus’ involvementFinancial authorities are investigating the incident, and North Korea’s Lazarus Group is being treated as the leading suspect, the Maeil Business Newspaper reported. Lazarus is also believed to have been behind the 58 billion won ($40 million) worth of Ethereum (ETH) stolen from Upbit in 2019. A government official told the paper that the latest breach did not appear to stem from a server intrusion but may have involved a stolen administrator account, allowing the attackers to impersonate internal staff and move assets—similar to the method used in the 2019 case. Security analysts echoed that assessment. One investigator said the stolen funds moved through exchange wallets before being mixed, a pattern often linked to Lazarus. He added that mixers, which are prohibited in Financial Action Task Force (FATF)-member jurisdictions, make tracing difficult and that attackers typically route assets through countries outside that framework, further pointing to North Korea. Following the incident, Upbit suspended deposits and withdrawals for all assets and said services will resume once security is fully verified. The halt has also affected trading dynamics on the exchange, with CryptoQuant CEO Ki Young Ju noting that retail investors are fueling altcoin spikes as arbitrage bots remain offline. Dunamu, Naver set $6.8B growth planThe security crisis struck at a particularly sensitive moment for Upbit’s operator, Dunamu, overshadowing what was intended to be a celebratory corporate milestone. On that same day, Dunamu, Naver, and Naver Financial held a joint press conference to outline their global expansion strategy. Dunamu brings its blockchain and crypto infrastructure, Naver contributes its position as Korea’s dominant search engine, and Naver Financial adds its payment platform serving 34 million users. The event came after reports that Naver Financial and Dunamu had approved a merger plan through a comprehensive share swap, with the ratio set at 2.54 to 1. The three companies said they will combine their respective strengths to invest 10 trillion won ($6.8 billion) over the next five years in building an ecosystem centered on Web3 and artificial intelligence (AI).During the press conference, Naver CEO Choi Soo-yeon said no decisions have been made on a Nasdaq listing for the newly combined Naver Financial–Dunamu entity or on whether it might eventually merge with Naver, according to TechM. She said dual listings remain a matter requiring national consensus. Choi also noted that while Naver Financial is a Naver subsidiary, Dunamu is the larger partner, and a later merger between the combined entity and Naver is unlikely.

In a move to enhance the oversight of cross-border wire transfers involving virtual assets, Bangko Sentral ng Pilipinas (BSP), the central bank of the Philippines, is fortifying the implementation of regulations relative to crypto transfers.Photo by C Bueza on UnsplashTravel rule clarificationsLocal news outlet, the English language newspaper The Philippine Star reported that central bank memorandum 2023-042 provides clarifications on the travel rule for virtual asset service providers (VASPs). The travel rule requires financial institutions to pass on information to the next institution where a transaction takes place. The BSP aims to bring greater clarity to several aspects, including the applicability of the P50,000 transaction threshold and expectations regarding transactions involving jurisdictions without travel rules. Additionally, further interpretation is being provided concerning the extension of the Philippine travel rule to non-custodial VASPs and regulatory expectations surrounding transactions with unhosted wallets or crypto wallets controlled directly by their owners, rather than managed by third-party service providers. FATF compliance ambitionThis regulatory move is in response to the directives from the Paris-based Financial Action Task Force (FATF). In 2021 the Philippines came under greater scrutiny from the intergovernmental organization, when it was included on its "gray list," making it a candidate for increased monitoring. The FATF has called upon the Philippines to establish guidelines for the travel rule to prevent terrorists and criminals from exploiting virtual asset transfers for the unrestricted movement of their assets and to detect and prevent misuse effectively.BSP-supervised financial institutions (BSFIs) are now mandated to scrutinize specific details of virtual asset transfers, including the originator's name, account number used in the transaction, originator's physical address or national identity and the beneficiary's name and account number. International moves towards complianceThis latest move by the Philippine central bank is not unusual. In recent months, a plethora of similarly motivated central banks around the world have tightened up on crypto regulation as it relates to the FATF directives. Being on the FATF's "gray list" is bad for a country’s reputation. It has the potential to result in loss of investor confidence and lead to higher compliance costs and greater monitoring. Additionally, it may have an impact on trade relations and damage a country’s ability to access international finance.  Turkey has also found itself on the organization’s gray list. Working towards repairing that situation, Turkey is in the process of establishing a crypto regulatory framework that will be FATF compliant.In May, Pakistan went a step further in banning cryptocurrency. At the time, its Minister of State for Finance and Revenue, Aisha Ghaus Pasha, stated that the ban had been a requirement for Pakistan’s removal from the FATF gray list. A tightening of crypto regulations has also occurred in the United Arab Emirates (UAE) and in Hong Kong more recently, as those territories work towards ensuring FATF compliance. The BSP emphasizes that transactions not surpassing the P50,000 threshold or its equivalent in foreign currency must include the names and account numbers of both the originator and beneficiary. Both originating and beneficiary VASPs are required to establish and adhere to robust sanction screening procedures, ensuring compliance with sanctions lists and preventing transactions involving sanctioned individuals, entities, or jurisdictions.

China’s Fuzhou City Offers Incentives to Entice Blockchain Start-UpsAdministrators in Fuzhou city, the capital and one of the largest cities in China’s Fujian Province, have introduced a raft of policies aimed at enticing blockchain-centric companies to establish themselves in the city.Photo by 尧智 林 on UnsplashMonetary rewardsThe measures are understood to include rent subsidies applicable to the use of commercial office space in the city, as well as the payment of cash rewards based on such start-up businesses hitting various revenue targets. The cash reward incentives are being capped at 500,000 yuan, around $71,800 US dollars, for each applicable project.The city administrators are also offering cash rewards to institutions within the city area and local blockchain firms in cases where they attain government-issued certifications. Another category through which these entities can reap more cash rewards is in providing training services centered upon blockchain technology.A blockchain firm basing itself within the city limits that is successful in attaining state certification reflecting its status as a national level laboratory specializing in blockchain technologies may be awarded as much as 1 million yuan ($144,000).Rent subsidiesThree specific industrial locations are applicable where the rent subsidy is concerned. Blockchain-based businesses wanting to avail of that incentive will have access to an annual rent subsidy of up to 600,000 yuan ($86,300) for every 1,000 square meters of commercial office space that they rent.Stepping up activityThere seems to be heightened activity related to various aspects of blockchain-related technology within China’s borders in recent months. It appears that while the country is taking the initiative with blockchain-related technology, that excludes the development of or open market use of decentralized cryptocurrencies.China has been pursuing a policy of pushing cryptocurrency beyond its borders in recent years, to include bans on cryptocurrency exchanges and crypto miners. However, over recent months, it is allowing this segment of the overall blockchain innovation to develop within the autonomous Chinese territory of Hong Kong. In fact, it’s actively encouraging it. It’s quite a savvy move by the Chinese who don’t want their citizens using decentralized cryptocurrency generally but are quite happy to still participate on a global level in that sector, by having Hong Kong make efforts to become a regional crypto hub.A second strand to its overall strategy appears to be a concerted effort to expand the user base within China of the digital yuan, its central bank digital currency (CBDC). A series of initiatives have been rolled out in an effort to bring the CBDC into active use. China remains the global leader in CBDC development, much further along in that process than its international peers.Lastly, it’s strategically pursuing the development of blockchain-related business, just as this initiative in Fuzhou indicates. The local government initiative is not an isolated one. Last Wednesday, China’s National Blockchain Technology Innovation Center was formally launched. As far back as 2019, Beijing-based smart contract platform Trias has been assisting authorities in Fuzhou in utilizing blockchain in an effort to better manage its electrical grid infrastructure.