{"id":324882,"date":"2021-08-15T16:11:00","date_gmt":"2021-08-15T13:11:00","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile\/"},"modified":"2021-08-15T16:11:00","modified_gmt":"2021-08-15T13:11:00","slug":"outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile\/","title":{"rendered":"# Outwitting crypto criminals: Why exchanges have to go the extra mile"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a3f8f8d4320e\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a3f8f8d4320e\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile\/#To_KYC_or_not_to_KYC_How_criminals_circumvent_traditional_security_measures\" >To KYC, or not to KYC: How criminals circumvent traditional security measures<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile\/#Evolving_regulation_and_going_above_the_standard_are_crucial_to_protect_customers\" >Evolving regulation and going above the standard are crucial to protect customers<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile\/#Fighting_a_war_on_the_front_lines\" >Fighting a war on the front lines<\/a><\/li><\/ul><\/nav><\/div>\n<p>&#8220;<strong># Outwitting crypto criminals: Why exchanges have to go the extra mile <\/strong>&#8221;<br \/>\n<img decoding=\"async\" src=\"https:\/\/images.cointelegraph.com\/images\/840_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjEtMDgvM2MyMWVlN2ItODE1MS00OWFjLWEyYjYtNDFhYmMxZGE5N2FlLmpwZw==.jpg\" \/><\/p>\n<div class=\"post-content\" data-v-128018ef>Crypto criminals are getting more adaptive and smarter than ever before. But how can industry service providers keep up with them? If I say that the crypto industry is highly targeted by cybercriminals and, in particular, organized criminals, I\u2019m sure that no one who has spent a few months within the space would be surprised. And for a valid reason.<\/p>\n<p>Due to the new <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">technology<\/a> and the nascent nature of the sector, criminals and fraudsters have long identified the excellent opportunity that crypto offers to profit via illicit methods. Indeed, any \u201cnew\u201d <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>roach to the financial sector is welcomed by the criminal fraternity as an opportunity to launder funds and find new victims.<\/p>\n<p>While the situation has improved significantly since the early days of digital assets, political and financial industry pressure has led regulators to aim their sites at the crypto industry, and their long-trusted approach may not be as effective in this innovative and non-traditional space. At the same time, market participants often underestimate the intelligence, innovation and adaptability of criminals who wish to take advantage of the industry.<\/p>\n<p><strong><em>Related: <\/em><\/strong><strong><em>Bitcoin can\u2019t be viewed as an untraceable \u2018crime coin\u2019 anymore<\/em><\/strong> <\/p>\n<h2><span class=\"ez-toc-section\" id=\"To_KYC_or_not_to_KYC_How_criminals_circumvent_traditional_security_measures\"><\/span>To KYC, or not to KYC: How criminals circumvent traditional security measures<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Know Your Customer (KYC) is one of the most widely utilized measures among cryptocurrency exchanges. While it helps service providers to learn more about their customers \u2014 including their identity, residence and source of funds \u2014 KYC is also a mandatory requirement for most digital asset businesses.<\/p>\n<p>But rapid technological advancement and the attention regulators pay to KYC are definitely not enough to eliminate bad actors from the platform. The criminal fraternity is able to abuse the industry because they adapt rapidly, do not have to follow the same rules as us, have high liquidity and enjoy a great deal of expertise. <\/p>\n<p>As a result, while traditional KYC tools can stop less established, less professional criminals, those with great experience and the necessary skills can easily circumvent such measures. It\u2019s something they have been doing for decades in traditional financial services.<\/p>\n<p>In practice, it\u2019s very easy for criminals to procure fake documents and use them to bypass KYC rules. And they don\u2019t even need comprehensive \u201cPhotoshop\u201d skills. Fraudsters can get through the front door by paying decent people who want to take care of their families for their passport data and a selfie when required. The use of mules is no revelation, but the process has become immeasurably easier in the digital space.<\/p>\n<p>In terms of fraud, cybercriminals primarily target less tech-savvy users. Despite the serious money involved, criminals know that many utilize crypto products and services without knowing even the basics about how they work.<\/p>\n<p>Malicious parties definitely take advantage of this. This is the reason why you see so many \u2014 rather amateurish \u2014 \u201cElon Musk giveaway\u201d scams out there. While veteran users can spot them easily, they effectively attract less-knowledgeable victims eager to not miss out on crypto space opportunities.<\/p>\n<p>Because they are harder to fool, fraudsters rarely target more savvy people. That said, we should never underestimate the intelligence and brazen approach of criminals. They learn fast, and many of them possess the necessary resources to bypass previously unbreakable security measures. A great example is the way in which fraudsters are employed to leverage <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">social<\/a> engineering and other cunning tactics to acquire the details and private keys even of experienced crypto users.<\/p>\n<p><strong><em>Related: <\/em><\/strong><strong><em>The radical need for updating blockchain security protocols<\/em><\/strong><\/p>\n<h2><span class=\"ez-toc-section\" id=\"Evolving_regulation_and_going_above_the_standard_are_crucial_to_protect_customers\"><\/span>Evolving regulation and going above the standard are crucial to protect customers<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The innovative technology in the financial services industry brings with it progressive, tech-savvy fraudsters who adapt quickly to major changes and new situations. For that reason, regulators need to continue to work in partnership with crypto industry players to protect consumers. However, where Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT) is concerned, governments have implemented traditional style rules for the crypto space, and in such an innovative and, at times, different industry, this isn\u2019t always the best fit.<\/p>\n<p>Where traditional KYC measures are concerned, money launderers see these as akin to an old, previously solved puzzle that can be easily pieced together to circumvent service providers\u2019 AML measures. It\u2019s a problem they have been solving for years and are now very adept at.<\/p>\n<p>And despite the importance of protecting their customers and systems from abuse, cryptocurrency enterprises have to implement old-school controls and abide by these sometimes ill-fitting rules to retain or attain their regulated status (and, thus, stay in business). This is a key stage where regulators and governments need to utilize their relationship with the crypto industry to better develop more suitable controls over time. For example, with external bad actors having long solved the KYC puzzle, better systems are required to address this issue. Perhaps utilizing bio-KYC and developing subsequent controls, such as monitoring the activities of users once they are past the gates and detecting patterns or unusual behavior, would help.<\/p>\n<p>While traditional AML controls have historically been suitable in the fight against money laundering, adding the cyber element brings with it new challenges, giving us a need to protect customers, their funds and their data in the digital space. We first saw this start to develop with online banking, and it really became a fast-paced development requirement with the evolution of the payments industry and e-money.<\/p>\n<p>Where cybersecurity is concerned, this doesn\u2019t mean that digital asset exchanges can\u2019t do anything to better protect their customers. On the contrary, industry service providers have to go the extra mile and spend additional resources to raise their standards higher than required by implementing cybersecurity best practices internally.<\/p>\n<p>For example, crypto exchanges can become Payment Card Industry Data Security Standard (PCI DSS) qualified, even though most regulators don\u2019t require them to do so. These rules are in place to guide the payments and card industry, but they could be an excellent place to start to build a protective framework within the crypto industry. In addition to implementing such extra measures, service providers need a dynamic and expert cyber team, decent technology and the right processes to respond to threats in a quick, efficient way. A lot can be learned from the payments and e-money industries in this respect.<\/p>\n<p>Combine these with high-quality customer support, and you have a good chance at keeping up with the rapidly evolving and advancing strategies and tactics of crypto cybercriminals.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Fighting_a_war_on_the_front_lines\"><\/span>Fighting a war on the front lines<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Criminals targeting the digital asset space are savvy and learn fast. They will attempt to attack our customers, our systems and utilize our services to launder their funds just as they have been doing in traditional financial services for decades.<\/p>\n<p>However, crypto businesses have one major advantage. Due to its innovative, complex solutions, the crypto industry already possesses great expertise and extensive experience. For that reason, we are already technologically minded and need to be recognized as part of the vanguard in the security and protection of our customers as well as their assets and information. <\/p>\n<p><strong><em>Related:\u00a0How DeFi protocols get hacked?<\/em><\/strong><\/p>\n<p>We are in a regulatory phase, with eyes on regulators and the industry working together. Now is the time to take the necessary steps to establish a framework more suited to the crypto industry than traditional financial services. Only when this harmony is achieved can we come together as a society to stop our customers and financial services from being abused by criminal and terrorist enterprises.<\/p>\n<p class=\"post-content__disclaimer\"><em>The views, thoughts and opinions expressed here are the author\u2019s alone and do not necessarily reflect or represent the views and opinions of Cointelegraph.<\/em><\/p>\n<div>\n<div style=\"background: rgb(239, 239, 239); border: 1px solid rgb(204, 204, 204); padding: 10px;\"><strong>Mark Taylor<\/strong> is the head of financial crime at international cryptocurrency exchange CEX.IO. He has experience in Anti-Money Laundering and fighting against scammers. Mark also stands for KYC and more transparent relationships between the crypto industry and regulators. While in Gibraltar, Mark was a member of the Gibraltar Association of Compliance Officers (GACO) for six years, with his last two years in post as chairperson. He has also previously been a member of the Gibraltar E-Money Association (GEMA) and the Electronic Money Association (EMA) in the United Kingdom.<\/div>\n<\/div>\n<p><template data-name=\"subscription_form\" data-type=\"markets_outlook\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/outwitting-crypto-criminals-why-exchanges-have-to-go-the-extra-mile\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;# Outwitting crypto criminals: Why exchanges have to go the extra mile &#8221; Crypto criminals are getting more adaptive and smarter than ever before. But how can industry service providers keep up with them? If I say that the crypto industry is highly targeted by cybercriminals and, in particular, organized criminals, I\u2019m sure that no&#8230;<\/p>\n","protected":false},"author":1,"featured_media":324883,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/images.cointelegraph.com\/images\/1200_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjEtMDgvM2MyMWVlN2ItODE1MS00OWFjLWEyYjYtNDFhYmMxZGE5N2FlLmpwZw==.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[74859,74894,77035,74932,74863,76978,75141,70934,72287,4965],"class_list":["post-324882","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-aml","tag-blockchain","tag-counter-terrorism-financing","tag-crimes","tag-cryptocurrencies","tag-cybercrime","tag-kyc","tag-regulation","tag-security","tag-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/324882","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=324882"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/324882\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/324883"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=324882"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=324882"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=324882"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}