Dunamu likely to extend CEO Lee’s tenure, ensuring continuity in Upbit leadership

The crypto space continues to suffer a disproportionate share of hacks and scams that were further exacerbated on Wednesday, with Malaysian crypto data aggregator the latest to succumb to a security breach. Serving as yet another stark reminder of the persistent threats plaguing the sector, a phishing scam targeted CoinGecko's X account, leading to a brief compromise that raised concerns about the safety of user information.Photo by GuerrillaBuzz on UnsplashPhishing scamDuring this incident, hackers posted a phishing link on CoinGecko's X account, falsely advertising a token airdrop for a cryptocurrency named GCKO. The deceptive post claimed that GCKO could be used for API services, including the cryptocurrency ANKR. Swift action by CoinGecko involved the removal of the fraudulent post and a public warning urging users to avoid interacting with any suspicious links or content. In an X post, CoinGecko wrote:”Our Twitter accounts @CoinGecko and @GeckoTerminal have been compromised. We're taking immediate steps to investigate the situation and secure our accounts. Please DO NOT click on any links or engage with suspicious content. Your security is our top priority.” Employee errorThe firm followed up with an update on Thursday, attributing the breach to a team member inadvertently clicking on a fraudulent Calendly link, granting unauthorized access to the hacker. Despite having two-factor authentication (2FA) enabled and employing robust security measures, CoinGecko emphasized that the inadvertent click allowed unauthorized access. The compromised accounts were then exploited to disseminate misleading information and potentially engage in malicious activities. CoinGecko expressed sincere apologies for any confusion or inconvenience caused by the incident. The company reiterated its commitment to platform security and continuous improvement of internal controls, assuring users that corrective measures were promptly implemented. SEC incompetenceCoinGecko's security incident occurred within 24 hours of a similar occurrence involving the U.S. Securities and Exchange Commission (SEC). The SEC's X account was compromised, with scammers posting a false message from Chair Gary Gensler about the approval of spot bitcoin exchange-traded funds (ETFs). While CoinGecko identified a vulnerability in its security regimen, the SEC later confirmed that the breach in its case was far more basic. It was not due to infrastructure attacks but rather the lack of 2-factor authentication (2FA) tied to the SEC's account, the most basic form of operations security. Gensler and the SEC have come in for major criticism from the crypto community in the U.S. due to a policy of regulation by enforcement that has been pursued. With that, the Commission came in for swift and harsh criticism in the immediate aftermath of its X account hack. Many pointed out the irony of Gensler advising consumers to secure their accounts back in October when the SEC itself had failed to do so. Others queried who would be responsible for what some interpreted as an episode of market manipulation, something that the SEC has perennially associated the crypto markets with. During the time that the account was compromised, millions of dollars of value were liquidated in short and long trading positions. CoinGecko's quick response serves as a valuable lesson in the importance of vigilance and proactive security measures amid the growing threats facing the cryptocurrency community.

The Asia Web3 Alliance Japan, an agency that regards itself as a bridge between the Web3 ecosystem in Asia and Japan’s broader business sector, has reached out to the Securities and Exchange Commission in the United States with a view towards establishing a strategic collaboration.Photo by Clement Souchet on UnsplashFocus on Web3 regulatory innovation & tokenizationThe President of the organization, Hinza Asif, wrote to SEC Crypto Task Force Chairperson and SEC Commissioner, Hester Peirce, on the subject, on March 25. The letter, subsequently published by the SEC, sets out a proposal that centers on a strategic U.S.-Japan partnership relative to Web3 regulatory innovation and tokenization. The Japanese agency, which has set out cross-border synergy as one of its objectives, calls for collaboration between Japan’s Financial Services Agency, the Japanese Ministry of Economy, Trade and Industry and the Bank of Japan with the U.S. regulator. The Alliance proposes that the goal of that partnership would be the establishment of regulatory clarity in respect of the Web3 sector, together with the fostering of interoperability between a developing Web3 ecosystem in the U.S. and the one that’s developing in Japan. Token classification frameworkDelving deeper into proposal specifics, Asif sets out the formation of a harmonized token classification framework as a key objective. The proposal suggests that a distinction needs to be made between tokenized securities, utility tokens and non-security digital assets.  The alliance believes that right now, token classification is unclear, with projects struggling to understand what category their token falls within from a regulatory perspective. There’s a lack of token offering frameworks. While it sees that further work is required, the Asia Web3 Alliance Japan is encouraged by progress made by the SEC’s Crypto Task Force in identifying security categories. With this cross-border collaboration, the Japanese crypto advocacy group believes that there is an opportunity to achieve regulatory interoperability on an international basis. That would facilitate compliant cross-border token issuance. On that basis, the alliance suggests that standards be developed such that regulatory consistency is achieved internationally when it comes to items such as digital asset trading, custody and token issuance. The proposal sets out a need for reciprocal disclosure requirements between the two jurisdictions where cross-border token issuance is concerned. It advocates for mutual recognition of what it terms “compliant tokenized offerings.” Bringing safe harbor to JapanAnother focus area contained within the proposal is the suggestion of a need to implement a safe harbor approach in Japan for early-stage token projects in line with what has been put forward in the U.S. Peirce first put forward a token safe harbor proposal in the U.S. in 2020. It sets out to provide exemptions over a defined initial period for certain token issuances. The idea behind it is to enable these early-stage projects to innovate and mature without getting bogged down in a regulatory quagmire. The establishment of a U.S.-Japan Web3 regulatory roundtable is another strand contained within the proposal. This would provide a mechanism for ongoing dialogue between stakeholders such as regulators, industry leaders and legal experts.

Vietnamese authorities have dismantled a criminal ring that used cryptocurrency to launder illicit gambling profits, AFP reported, citing local media. The group converted local currency into digital assets such as USDT and Ethereum, routing funds to users for online betting. Operating multi-layered investment websites, the network grew to as many as 20,000 users and managed 25 million accounts, despite Vietnam’s ban on cryptocurrency. In total, the transactions involved were valued at roughly $3.8 billion. Police allege that millions of dollars were funneled into real estate, luxury cars, and cross-border cash transfers. While the money laundering probe continues, the gambling case has already produced convictions. Four Vietnamese siblings who ran the network, along with 39 other defendants, received sentences in Ho Chi Minh City ranging from a three-year suspended term to 13 years in prison. An Indian national identified as the alleged mastermind remains at large.Photo by Amanda Jones on UnsplashThai police foil crypto-themed fraudElsewhere in the region, police in neighboring Thailand busted a South Korean crime syndicate based in Pattaya that allegedly stole more than 20 billion won ($14.2 million) through fraud schemes that invoked cryptocurrency as a lure, along with other scams, the Chosun Ilbo reported. The scam ring reportedly obtained customer data from a lottery tip site and collected money from victims either by posing as agents offering membership refunds or by claiming to provide compensation for leaked personal information, which they disguised as opportunities to buy digital assets. In addition to these schemes, the syndicate ran romance scams and posed as authorities. Thai police arrested 20 members in a June resort raid. Nine more suspects, including ringleaders, remain in custody awaiting extradition. Seoul police said that, in total, 25 members have been caught, 21 of whom are now detained. Authorities believe the network may be linked to other groups in Thailand and are widening the investigation. Europe uncovers $120M crypto fraudCrypto crimes aren’t limited to Asia. In Europe, police arrested five suspects in a Eurojust-led operation that uncovered an online investment scam worth at least €100 million ($116.8 million). Operating since 2018 across 23 countries, the scheme lured victims with platforms promising high returns, then funneled deposits through Lithuanian accounts before disappearing. In a report by the Organized Crime and Corruption Reporting Project, Elliptic Chief Scientist Tom Robinson said such schemes often have little to do with cryptocurrency itself, instead exploiting its technical obscurity and the allure of quick gains. Beyond scams, outright theft from crypto platforms is also climbing. A Chainalysis study found that by the end of June 2025, more than $2.17 billion had been stolen from exchanges and related platforms—already surpassing the total for all of 2024. The firm projects losses could reach $4 billion by year-end. The single largest incident was the February hack of the Bybit exchange, in which thieves took $1.5 billion, roughly 69% of all funds stolen in the first half of this year. Crypto crime turns increasingly violentThe Chainalysis report also flagged a rise in physical attacks, in which criminals use violence or coercion to force individuals to hand over their crypto holdings. The firm warned that 2025 may log nearly twice as many cases as the worst year on record, noting that the attacks often rise and fall with expectations for Bitcoin’s price. In response to these threats, Chainalysis stressed the need for a multilayered approach to crypto security. It advised service providers to strengthen internal controls through regular audits and employee screening, while upgrading wallet infrastructure and other technical defenses. For individuals, the firm said, keeping holdings discreet has become as critical as technical safeguards, especially amid the rise in physical attacks.