Colleagues, crypto mining has
been overwhelmed with illicit cybercrime from within and without. The
sentencing of GAW CEO Josh
Garza is simply the latest assault on the dubious mining sector. The crypto
mining sector consists of three components – ASIC vendors such as AMD and NVidia,
legitimate mining firms like Bitmain and the rather amorphous niche of mining
services resellers. GAW falls into the mining services niche. In fairness to
all, there are legitimate mining services firms such as Genesis, Hashflare, Eobot
to name a few (visit Tech
Radar for a more comprehensive list). GAW’s downfall was due to greed –
pure and simple. Reseller more services than it actually had under contract was
a classic Ponzi scheme. We have extensively reported on the onslaught of cybercrime targeting
the vulnerable mining sector …, which was pervasive in 2017 and has reached
epic proportions in 2018. Bottom line: Buyers beware. If you want to
participate in the attractive crypto mining space a double [portion of due
diligence in a necessity. Verify the firm’s background, Board of Directors,
investors, check for any complaints filed with the US FTC or US SEC, have a legal expert
review their terms and conditions, and speak directly with current customers
large and small regarding the firm’s stability. Share your assessment while visiting us today! Lawrence – Cyber
Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, co-founders of the Gemini crypto exchange Tyler and Cameron Winklevoss have been granted a patent for “Systems and methods for storing digital math-based
assets using a secure portal”. Digital asset ledgers will be used to protect users from “double-spend” cyber-attacks. Unlike traditional paper currencies,
cryptocurrencies have the
potential to be copied and rebroadcasted. This leads to the opportunity for
nefarious cyber criminals to spend the same cryptocurrency twice. Multiply this
type of transaction known as “double-spend” by 100s of thousands of transactions
and the value of crypto jacking easily runs into the millions of USD. Bottom
line: How effective will the new crypto key storage system be in preventing
illicit “double-spend”? Our readers along with the global crypto ecosystem will not know the answer until this system is
designed, developed and battle tested in the real world. Yes, we will be
tracking this matter closely. Send us your assessment while visiting us today! Lawrence – Cyber
Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, China has become one
of the first countries to recognize Blockchain-based
smart contracts as legally binding evidence. Moreover,
the PRC has opened two courts dedicated to processing Internet and cybercrime.
These moves would appear to strengthen crypto cyber security in both domestic
and cross-border transactions. The UK Law
Commission reported in July 2018 that it
has launched a research project to assess the legitimacy of smart contracts as
well. Meanwhile, the American
Bar Association (ABA) views recognizes
Blockchain-based smart contracts as a “disruptive
advancement” which have the potential of transforming the legal system. Surely,
there is a vocal minority in the global crypto ecosystem who view such measures
as a hindrance to cryptocurrency adoption. By contract, we believe that
collectively these initiatives will have two positive outcomes. First, enhanced
security in cryptocurrencies and the Blockchains that enable them. Second,
improvement in consumer and institutional confidence in cryptocurrencies. Send us your assessment while visiting us today! Lawrence – Cyber
Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, two of the greatest
value propositions Blockchain offers the established financial and banking
system is faster transaction speed accompanied by lower OPEX. This is
especially appealing for trans-border payments. IBM’s
World Wire joins the ranks of RippleNet, Ant
Financial and GMO in this enticing market niche. The key players will likely tout
their systems at the up-coming Sibos fintech conference in Australia this October. These systems are
based upon on model integrated into a bank’s existing systems, fiat currency is
exchanged into a digital asset at bank A which in turn is transferred to
bank B where it is converted back into a second fiat currency. Sounds
attractive, indeed. Bottom line: There are three critical success factors
needed for this process to be commercially viable. They have speed and can
reduce OPEX, but with what level of security … which is the Achilles heel of
all Blockchains in the banking sector and beyond. We will closely monitor the
aforementioned vendor’s system and report this fall. Send us your assessment while visiting us today! Lawrence – Cyber
Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, crypto jacking has become a
monumental cyber challenge for cryptocurrency mass adoption. Most crypto
jacking attacks target Chrome, Firefox, IE and Safari browsers by adding
nefarious scripts, which perform illicit mining unbeknownst to end-users. The Google Play Store and Apple App Store have
implemented policies to remove suspicious apps from their online stores. However,
this is just one small step. Google, Apple, Microsoft and the Mozilla Foundation all need to
proactively integrate tools, which will prevent scripts and related adware. Moreover,
a more user-friendly method for automatically pushing security patches to mobile
devices and laptop-desktop computers alike. Bottom line: The security and
browser software firms have some of the best minds on the planet within the
ranks of their employer. We need something comparable to a moonshot commitment
to innovate security protection rather than constantly play catch-up to cyber
criminals if the cryptocurrency ecosystem is to achieve
the credibility needed by investors small and large. Send us your assessment while visiting us today! Lawrence
– Cyber Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, following high profile cyber
security breaches against CoinSecure and CoinCheck earlier this year, crypto-mining attacks have skyrocketed in 2018 representing a
plague on the global crypto ecosystem. In its Mid-Year 2018 Security Report TrendMicro states “We also detected a
significant number of new cryptocurrency
miner malware
families, showing that cybercriminals remained keenly interested in profiting
from digital currencies.” The Necurs exploit kit, CVE-2017-10271 via port
7001/TCP and Web miner script in AOL ad platform are some of the more notable
cyber security used by crypto-miner attackers. Moreover, while cyber-attacks
related to crypto mining far outpace other types of attacks, direct attacks against
crypto exchanges are on the rise. Where does this leave the integrity of the
global cryptosphere? Bottom line: The nature and rise in these attacks will
continue to hinder the mass adoption of cryptocurrencies around the world. While
far easier said than done, cryptosphere security needs to take a quantum step
forward to gain and maintain a proactive advantage over the crypto threat
juggernaut. Share your assessment while visiting us today! Lawrence
– Cyber Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, Operation Cryptosweep (aka “OC”) is a joint effort of regulators
from the US, Mexico, Puerto Rico, Canada and the US Virgin Islands targeting
unregistered ICOs and related securities fraud. Overseeing OC is The North American Securities
Administrators Association (NASAA). At is core is the US SEC’s Cyber Taskforce which was launched in September
2017. To date OC has led to some 200 crypto-related investigations. Bottom
line: While we support the appropriate regulation of the cryptosphere the
question of OC’s effectiveness is more than valid. Noteworthy exceptions to the
list of member states are Caribbean nations known for money laundering and
non-transparent offshore bank accounts. Antigua and the Cayman Islands are top
of mind. Bottom line: The OC will have a positive effect on reducing
crypto-related securities and ICO fraud, however, further attention needs to be
given to other countries known for their nefarious roles in the broader crypto
economy. Share your assessment while visiting us today! Lawrence – Cyber
Security Defender (https://cybersecuritydefender.blogspot.com/)
Colleagues, Iran
has taken a major step toward the creation of a state-backed cryptocurrency. The primary goal of this effort is assumed to
be the country’s circumvention of new US economic sanctions in the wake of US President
Trump revoking support of the Iran
nuclear arms accord in May 2018. Work on a national cryptocurrency dates back
to late 2017 when the US President re-affirmed his campaign promise to revoke
the accord and re-impose stiff trade sanctions. This initiative has the backing
of Iranian President Hassan Rouhani and is led
by their National
Cyberspace Center. Back in January 2018 the US
Treasury issued a severe warning against
Iran’s use of cyber warfare and development of a cryptocurrency for this very
reason. Bottom line: Iran, Russia and Venezuela has announced plans to develop
digital currencies for the purpose of evading Western (aka US) trade sanctions.
Transaction “transparency” is a vital factors in whether their efforts will be
successful at essential protecting nefarious money
laundering activities. We assume the
currencies which be intentionally designed to avoid detection by the US and its
allies. Details to follow in the coming months.
Colleagues, Google Pay, Alipay, WeChat Pay and Facebook Payments are among the most popular tools for online
payments, money transfers and fundraising. Each tool is confronted with the
dilemma of whether to accept cryptocurrency transactions. The Chinese Banking
Regulatory Commission and the People’s Bank of China have release strong
warnings against the so-called “crypto payments model”. In the US Google Pay
and Facebook Payments are faced with similar challenges. They are global
platforms and what is acceptable in one country or region may be prohibited
elsewhere. The potential security risks are numerous – exchange fraud, money laundering, lack of transaction transparency along with the fundamental integrity of many
second and third tier cryptocurrencies are bona fide concerns among government
regulators, platform vendors and users alike. There is no “one size fits all”
solution. Bottom line: We see marriage of online payment tools and
cryptocurrencies as yet another ‘test’ as cryptos seek mass market adoption.
Like other crypto related challenges we do believe that in time such issues
will be resolved … although for now no one knows the precise solution. Share your thoughts today! Lawrence – Cryptocurrency
Academy (https://cryptocurrencyacademy.blogspot.com/)
