Digital Currency Group settles with the SEC for $38 million over misleading statements surrounding Genesis collapse
The Digital Currency Group has agreed to settle with the SEC for $38 million over charges that its Genesis subsidiary misled investors. When the hedge fund Three Arrows Capital blew up and defaulted on a margin call in June 2022, DCG publicly downplayed the fact that their entire business was at risk, and overstated its ability to bail out the Genesis subsidiary by taking on its liabilities and doing some weird accounting maneuvering involving a $1.1 billion promissory note. In November, with further crypto market turmoil, Genesis could no longer meet withdrawal requests and collapsed. The company filed for bankruptcy the following January.
- Order from the SEC
MakersPlace NFT marketplace shuts down
Citing "ongoing market challenges and funding difficulties", the MakersPlace NFT platform announced it will be shutting down after six years of operations. The company had raised $30 million in funding in August 2021 from investors including Eminem, Sony Music, and Coinbase Ventures.
They wrote in their announcement that, although they had some money left, the "prolonged downturn" in the NFT market was causing them to "anticipate significant challenges in securing further investment which would make it difficult". They said they would be returning unused funding to investors and shutting down most of the site's functionality immediately.
- "MakersPlace Announces Market Exit", MakersPlace
BitMEX fined additional $100 million for regulatory violations
Although BitMEX had previously tried to argue that they should not face additional penalties after being fined $110 million in 2024 for Bank Secrecy Act violations, a judge has disagreed. BitMEX pleaded guilty to failing to implement an adequate anti-money laundering program, as required by US regulations. During the five-year period of "willful" non-compliance, the firm allegedly drew $1.3 billion in revenues.
BitMEX was not supposed to serve US customers, yet Americans made up around 11.5% of their customers. "BITMEX policies nominally in place to prevent such trading were toothless or easily overridden to serve BITMEX's bottom line goal of obtaining revenue through the U.S. market without regard to U.S. criminal laws," alleged a press release by the US Attorney's Office of the Southern District of New York. They added: "Corporate executives took affirmative steps purportedly designed to exempt BITMEX from the application of U.S. laws like AML and KYC requirements, despite knowing of BITMEX's obligation to implement such programs by operating in the U.S. As part of BITMEX's willful evasion of U.S. AML laws, the company lied to a bank about the purpose and nature of a subsidiary to allow BITMEX to pump millions of dollars through the U.S. financial system."
- "Global Cryptocurrency Exchange BitMEX Fined $100 Million For Violating Bank Secrecy Act", press release by the U.S. Attorney's Office, Southern District of New York [archive]
- "BitMEX hit with additional $100 million fine over Bank Secrecy Act violations: report", The Block [archive]
The Idols NFT loses $324,000 to exploit
An attacker noticed a vulnerability in a smart contract for The Idols, an NFT project that also incorporates ETH staking functionality. They discovered that a function used to distribute rewards had a bug when the sender and recipient addresses were the same, allowing a holder to repeatedly claim rewards. By taking advantage of this bug, they were able to siphon 97 stETH (~$324,000) from the project.
Although The Idols boasts of two audits from several years ago, the contract containing the vulnerability may not have been audited.
- "The Idols NFT", Rekt [archive]
Sony accused of "rugging" after freezing IP infringing memecoins on their Soneium blockchain
![[person 1]
yeah the two meme tokens that everyone was excited about seem to be blacklisted now
[person 2]
0xea4E0CfF21Ea0a1650B658AAf5142720195245bB Is this what the team members do?
[person 3]
aibo now forbidden on explorer...
[person 4]
I just wanted a cute robot dog koin?
[person 5]
Why are you honeypotting coins lol
[person 1]
this is very bad vibes
[person 2]
A disastrous beginning
[person 1]
obviously not end-of-the-world but people bridged to Soneium to ape new memecoins and seeing themselves get locked out and rugged in real time](https://primary-cdn.web3isgoinggreat.com/entryImages/resized/sony-rug_300.webp)
Only hours after Sony launched its "Soneium" layer-2 Ethereum blockchain, the company was accused of "rugging" people who had purchased various memecoins launched on Soneium when it began prohibiting their trading. The two tokens, now listed as "forbidden" for trading, were based on Sony products. One, "Aibo", was themed around a series of robotic dog toys. The other, "Toro", was based on Sony's unofficial Toro Inoue mascot.
Sony's crackdown on these tokens perhaps should not have come as a huge surprise, given that the announcement of Soneium's launch touted "protecting content rights and creating fair profit-sharing mechanisms" among its goals.
Nevertheless, members of the Soneium Discord widely accused Sony of "rugging" or "honeypotting" them by prohibiting trading on the memecoins they had purchased.
Australian Open apparently scraps its NFT project
Holders of any of the several thousand "AO ArtBall" NFTs may be disappointed as the Australian Open appears to have abandoned the project aimed at tennis fans. The first NFTs originally sold for 0.067 ETH (~$275 at the time), and another round were minted for 0.23 ETH (~$450 at the time). However, the sale prices of the NFTs have steadily dwindled since early 2023, and recent sales have been for 0.003 to 0.0075 ETH (~$10–$25).
Buyers were told they could use the NFTs as a sort of fan pass, receiving access to a Discord, and earning ground passes and behind-the-scenes access for finals weeks. There was also a scheme in which NFT holders could redeem access to passes to matches.
However, the Australian Open seems to have let the project — launched at the peak of NFT hype — peter out, with no mention of redeeming passes, and project websites still promising a 2024 update. The Discord has been shut down.
UniLend exploited for almost $200,000
The UniLend project, which advertises itself as a "unified platform for all things AI and defi", was exploited for almost $200,000. An attacker was able to take advantage of a bug in a smart contract that handled token redemption.
UniLend acknowledged the hack, downplaying it as affecting "only" 4% of the platform's $4.7 million TVL. They offered a bounty to the attacker.
Bankless hosts slammed for dumping tokens
The hosts of the Bankless crypto podcast have landed in hot water after selling off some of the substantial quantities of $AICC tokens they were allocated as investors in the project. The $AICC project was launched by ejaaz, a co-host on an affiliated Bankless podcast, and had been promoted on Bankless shows. Each co-host received 9 million $AICC tokens in exchange for their 5 SOL (~$950) investments. The brand's venture capital arm, Bankless VC, also invested 2 SOL (~$380) and received a 3.64 million token allocation.
Shortly after the token's public launch, Bankless VC dumped 300,000 AICC (8% of their allocation) for 344 SOL ($65,300). By immediately dumping tokens on retail when the token opened for public trading, they were able to sell the tokens for an average of $0.22 — considerably higher than the $0.05 to $0.11 the token has been trading at over the last 24 hours.
When questioned about the trades, Bankless host David Hoffmann wrote: "Agree that Bankless Ventures should not be selling tokens - that was an impulsive mistake." He announced that they had repurchased the tokens they had sold, and were "discussing a self-imposed vesting schedule" for selling tokens that they themselves had promoted.
They later posted a long apology in their Discord, blaming the sales on Ben Lakoff, a general partner of Bankless VC. "Ben did not have context for this, and was in the mindset of trading a local high as you might trade a meme coin you're bullish on - or there's no way he would have done this - huge mistake, first time something like this has happened - he's devastated", explained Bankless co-host Ryan Sean Adams. He also placed some blame on AICC for not imposing any token lockups or vesting schedule that would prohibit early investors from dumping tokens on retail.
- Tweet by David Hoffman [archive]
- Tweet by David Hoffman, with Discord post by Ryan Sean Adams [archive]
- AICC investor token sales [archive]
$2.2 million stolen by fake job scammers
New York Attorney General Letitia James announced a lawsuit against a group of scammers operating a scheme in which they promised fake job opportunities to victims, convincing them they needed to first deposit cryptocurrency. Victims were told they would be generating review data for online products, but that they needed to maintain account balances equivalent or greater to the value of the products they were reviewing. They were then tricked into sending the cryptocurrency into digital wallets where they could be taken by the scammers. Those who tried to withdraw the assets were then scammed again, told they needed to pay a "blockchain verification fee" or "escrow fee".
One single victim was defrauded out of more than $100,000.
The NYAG has seized $2.2 million in Tether, and is pursuing legal action against the as-yet-unidentified scammers. Because of the unknown identities of the defendants, the NYAG will serve notice of the lawsuit via NFT — something they describe as a first by government regulators.
Moby Trade loses over $1 million to private key leak
The Moby Trade defi options protocol suffered a $1 million loss, narrowly avoiding the loss of another nearly $1.5 million. The project team stated that a hacker had "identified and exploited a vulnerability in the key management system" that was supposed to protect a private key used by the project. Using the private key, they were able to perform contract upgrades that then allowed them to drain about almost $1.1 million in wBTC, wETH, and USDC.
Another $1.47 million in assets were vulnerable as a result, but the whitehat blockchain security firm Seal911 successfully drained those funds to later be returned to the protocol once it was secured.
- "Moby Post-Mortem Report / Growth Plan", Moby Trade blog [archive]
- Moby Trade, Rekt [archive]
Orange Finance hacked
The Arbitrum-based liquidity management project Orange Finance suffered at least $840,000 in losses after hackers compromised the project's admin address, then used it to upgrade the project's smart contracts and transfer funds.
"The team is not sure what happened," wrote Orange Finance in a tweet announcing the hack, encouraging people to revoke contract approvals for the compromised addresses.
Orange Finance attempted to negotiate with the attacker via on-chain message, writing, "If you respond positively to our offer within 24 hours, we guarantee that no law enforcement agencies will be involved, and the matter will be treated as a white-hat hack."
Hengelo man arrested in alleged crypto pyramid scheme
A self-described crypto banker from Hengelo, Netherlands was arrested in connection to an alleged crypto pyramid scheme he'd been running. He'd originally told police that he was being harassed by investors after he told them he had lost the invested funds, and police helped him move to a safe location. However, after a group of investors amassed evidence that he was scamming the friends, associates, and others he'd lured into the scam, he's been arrested.
Victims estimate that between €1.5 million and €4.5 million (~$1.54 million – $4.64 million) was stolen.
Man reports losing $100,000 to website spoofing a crypto exchange
A man who received an inheritance in 2021 and decided to put it into crypto lost his entire $100,000 balance when he fell victim to a spoofing site in 2023. When he decided to withdraw the tokens, he Googled to find the Kraken crypto exchange where he had purchased them, and clicked on a result. However, despite the fact that it "was the first one to come up and it was branded with the same colours", the man clicked on a phishing website designed to mimic the Kraken exchange. Minutes after entering his credentials, his real Kraken account was drained. "This is money we don't have to spare," said the man. "I have three kids to put through college and this has been quite disruptive in the family."
The man contacted Canadian police, who told him the assets had been transferred out of the country and that they were unable to trace it.
Feed Every Gorilla hacked again for over $1 million
The "Feed Every Gorilla" project has once again been hacked, after suffering a pair of flash loan attacks in May 2022 amounting to $1.9 million in losses. The protocol also suffered losses later in 2022, thanks to an issue with a token locking service that cost FEG $2 million (though around $1.9 million was ultimately returned by the exploiter).
This time, the FEG project team blamed an issue with the project's bridge, which is a tool used to deposit and withdraw tokens from the project. An attacker was able to maliciously withdraw a large amount of FEG tokens via the flaw in the bridge, which they then sold off for around $1.07 million, tanking the FEG token price by 99% in the process. The bridge had been audited by the PeckShield blockchain security firm.
SEC fines Jump Crypto subsidiary $123 million
The SEC has levied a $123 million fine against Jump Crypto subsidiary Tai Mo Shan, which was part of a secret deal with Terraform Labs to help prop up the floundering Terra stablecoin in May 2021. Jump spent $20 million to help the supposedly “self-healing” stablecoin regain its $1 peg, earning about $1.28 billion in the process, and Terraform Labs CEO Do Kwon would later claim that the restoration to a $1 price was thanks to an automatic feature of the Terra project and not some backroom deal. This lie by Terraform Labs and Jump Crypto helped build confidence in the sustainability of the Terra token, which collapsed horrendously a year later.
The SEC also found that Tai Mo Shan had acted as a statuary underwriter for the Terra sister token Luna, which was an unregistered security.
Tai Mo Shan agreed to the fine, and to a prohibition on future violations of securities laws.
- “Tai Mo Shan to Pay $123 Million for Negligently Misleading Investors About Stability of Terra USD”, U.S. Securities and Exchange Commission [archive]
Two NFT fraudsters charged for rug pulls amounting to over $22 million
Gabriel Hay and Gavin Mayo, two LA-based NFT creators, have been charged for defrauding investors of more than $22.4 million through a series of NFT rug pulls and other crypto scams. The duo launched various projects with detailed and false roadmaps to lure NFT buyers, then abandoned the projects without following through.
For example, a "Vault of Gems" NFT project falsely claimed to be the "first NFT pegged to a hard asset, like jewelry", which would have its own exchange. A "Faceless" NFT project promised to produce comic books, a movie, and a clothing company. None of the promises ever materialized, and Hay and Mayo abandoned the projects soon after launching them.
Hay and Mayo worked to hide their involvement with their scams, and have been charged with harassment for attempting to threaten those who connected them. In one case, after a person revealed Hay and Mayo to be the ones behind the Faceless NFT project, the duo sent threatening emails and text messages to the man and his parents. In an email to his parents, they impersonated a law firm, and even threatened to make false sexual abuse claims against the man.
- Indictment of Gabriel Hay and Gavin Mayo [archive]
Kraken fined $5.1 million by Australian securities regulator
The US-based cryptocurrency exchange Kraken has been fined AU$8 million (US$5.1 million) for illegally offering margin trading to Australian customers. The firm had offered the margin product to more than 1,100 Australians without first undergoing the process to determine if the products were appropriate for retail customers.
The more than 1,100 customers lost more than US$5 million. While some of the customers were likely sophisticated investors, Kraken made no effort to limit the product to such a group. Around 81% of the customers who used Kraken's margin product lost money.
This is far from Kraken's first run-in with regulators. The company has settled with US regulators over sanctions violations and failure to comply with securities regulations pertaining to its staking product. They also have an open lawsuit from the US SEC over alleged unregistered securities offerings and commingling corporate and customer funds.
- "Kraken crypto exchange operator to pay $8 million following ASIC enforcement action", Australian Securities and Investments Commission press release
Crypto holder loses assets priced at $2.5 million
A crypto holder tweeted at the Ledger hardware wallet manufacturer to report that 10 BTC (~$1 million) and "~1.5m of NFTs" had been stolen from a Ledger wallet they were using. "The ledger was purchased directly from you. The seed phrase was stored in a secure location, never entered anywhere online. I never signed any malicious transactions. Everything is in my physical possession.I haven’t touched this ledger in 2 months," they wrote.
Some blamed the theft on an apparent malicious Ethereum transaction the user had signed nearly three years prior. However, while a malicious transaction signature on Ethereum could explain the NFT thefts, it should not alone enable the theft of assets on the separate bitcoin blockchain.
Despite this, Ledger blamed its customer, telling a media outlet that "As we know, the user got phished when it comes to the ETH wallet, we can assume user error on the BTC side too".