Threat Intel Solutions

[Blockchain -& Cryptocurrency](https://www.govinfosecurity.com/blockchain-cryptocurrency-c-483) , [Cryptocurrency Fraud](https://www.govinfosecurity.com/cryptocurrency-fraud-c-574) , [Fraud Management -& Cybercrime](https://www.govinfosecurity.com/fraud-management-cybercrime-c-409)Cryptohack Roundup: US Disbands Cryptocurrency Legal Team=========================================================Also: PoisonSeed Phishing Campaign, FTX Clients Face Reimbursement Hurdle [Rashmi Ramesh](https://www.govinfosecurity.com/authors/rashmi-ramesh-i-4224) ([rashmiramesh_](https://www.twitter.com/rashmiramesh_)) • April 10, 2025 [](https://www.bankinfosecurity.com/cryptohack-roundup-us-disbands-cryptocurrency-legal-team-a-27968#disqus_thread) * * * * * [Credit Eligible](/premium/pricing ‘As a BankInfoSecurity.com annual member, this content can be used toward your membership credits and transcript tracking.’)* [](/premium/pricing ‘As a BankInfoSecurity.com annual member, this content can be used toward your membership credits and transcript tracking.’)* Get Permission*  Image: Shutterstock*Every week, Information Security Media Group rounds up cybersecurity incidents in digital assets. This week, Trump administration disbanded a Justice Department crypto unit, the U.S. Securities and Exchange Commission will review crypto guidance, Usual pledged up to $16M in bug bounties, a PoisonSeed phishing campaign, FTX repayment plan troubles and a Coinbase 2FA error.***See Also:** [OnDemand -| NSM-8 Deadline July 2022:Keys for Quantum-Resistant Algorithms Implementation](https://www.govinfosecurity.com/webinars/ondemand-nsm-8-deadline-july-2022keys-for-quantum-resistant-algorithms-w-3882?rf=RAM_SeeAlso)### Justice Department Disbands NCETThe U.S. Department of Justice is shutting down its National Cryptocurrency Enforcement Team and narrowed crypto-related investigations on crimes linked to terrorism, drug cartels and organized crime.A memo from Deputy Attorney General Todd Blanche accused its predecessor administration led by Joe Biden of a ‘reckless strategy of regulation by prosecution’ of digital assets, [reported](https://www.reuters.com/world/us/us-justice-dept-disbands-cryptocurrency-enforcement-unit-2025-04-08/) Reuters. Launched in 2022, the unit handled major cases, including the prosecution of Binance and its founder Changpeng Zhao for money laundering. Under President Donald Trump, enforcement is taking a more crypto-friendly stance. Blanche based the directive on a Trump executive order supporting open blockchain access for individuals and businesses.### US SEC Looks to Review Past Crypto, Securities RegulationActing U.S. Securities and Exchange Commission Chair Mark T. Uyeda [instructed](https://x.com/SECGov/status/1908546943686492633) agency staff to review several past staff statements related to cryptocurrency and securities regulation, aiming to align them with Trump administration priorities. The directive follows [an executive order](https://www.federalregister.gov/documents/2025/02/06/2025-02345/unleashing-prosperity-through-deregulation) titled ‘Unleashing Prosperity Through Deregulation’ and recommendations from the Department of Government Efficiency.Key documents under review include [2019 guidance](https://www.sec.gov/about/divisions-offices/division-corporation-finance/framework-investment-contract-analysis-digital-assets) on applying the Howey test to digital assets, an ongoing legal debate that helps determine if an asset qualifies as a security. Uyeda’s move comes as the SEC signals a shift, recently stating that most meme coins likely fall outside securities laws. Also up for reconsideration is a [2021 statement](https://www.sec.gov/newsroom/speeches-statements/staff-statement-investing-bitcoin-futures-market) warning investors about mutual funds exposed to Bitcoin futures. At the time, the SEC raised concerns about volatility and market manipulation, though the landscape has since changed, with spot Bitcoin and Ethereum ETFs gaining significant traction. Guidance [on crypto-related disclosures after industry bankruptcies](https://www.sec.gov/rules-regulations/staff-guidance/disclosure-guidance/sample-letter-companies-regarding-recent) will come under review as well.### Usual Offers $16M Bounty for Critical BugsDecentralized stablecoin protocol Usual [launched](https://audits.sherlock.xyz/bug-bounties) what it claims is the largest bug bounty in tech history, offering $16 million for uncovering a critical vulnerability in it’s codebase. Partnering with blockchain security firm Sherlock, Usual aims to incentivize ethical hackers to identify serious flaws before they can be exploited. The record-setting bounty surpasses previous crypto industry rewards from Uniswap at $15.5 million, LayerZero Labs at $15 million and Wormhole at $10 million, and even Google’s $12 million annual program. To qualify for the top payout, vulnerabilities must result in a clear and significant loss or freezing of funds, without requiring external conditions.### PoisonSeed Phishing Campaign Hijacks Corporate Email Marketing AccountsA phishing campaign dubbed ‘PoisonSeed’ is hijacking corporate email marketing accounts to steal cryptocurrency, [said](https://www.silentpush.com/blog/poisonseed/) SilentPush. The campaign compromises accounts from platforms like Mailchimp, SendGrid, HubSpot, Mailgun and Zoho, and primarily targets users of Coinbase and Ledger. Attackers identify high-value employees with access to these platforms, phish their credentials using spoofed login pages and then send crypto-themed phishing emails from the compromised accounts. Once inside, attackers extract mailing lists and create new API keys to retain control. Victims receive emails urging them to ‘migrate’ to a new wallet by entering a pre-filled seed phrase, which is actually controlled by the attackers. When victims follow through, their assets are transferred into the attacker wallets and drained.### Thousands of FTX Users Risk Losing $2.5 B in RepaymentsNearly 400,000 creditors of the bankrupt cryptocurrency exchange FTX risk losing a combined $2.5 billion in repayments after failing to begin the required KYC process, showed a [filing](https://dd80b675424c132b90b3-e48385e382d2e5d17821a5e1d8e4c86b.ssl.cf1.rackcdn.com/external/deb-2211068-30042-april102025.pdf) in the U.S. Bankruptcy Court for the District of Delaware. The original deadline to start KYC was March 3, but has now been extended to June 1. The court is set to permanently disqualify unverified claims after that date.Claims under $50,000 account for about $655 million of the total at-risk funds, while larger claims could exceed $1.9 billion. The next round of repayments, scheduled for May 30, is expected to distribute over $11 billion to creditors with valid claims exceeding $50,000. FTX’s recovery plan aims to repay 98% of creditors at least 118% of their original claim value in cash.### Coinbase to Update Misleading 2FA Error MessageCoinbase is [reportedly](https://www.bleepingcomputer.com/news/security/coinbase-to-fix-2fa-account-activity-entry-freaking-out-users/) updating a misleading error message in its account activity logs that has caused confusion among users, many of whom feared their accounts were compromised. Over the past few weeks, users reported seeing ‘second_factor_failure’ or ‘2-step verification failed’ messages after receiving phishing emails or texts, leading them to believe someone had their password but failed to bypass two-factor authentication. This prompted widespread anxiety, password resets and malware scans. But these messages also appear when an incorrect password is entered, not just after a failed 2FA attempt, making the warning misleading. Coinbase acknowledged the issue and said it plans to revise the message, though it has not provided a timeline.  #### [Rashmi Ramesh](https://www.govinfosecurity.com/authors/rashmi-ramesh-i-4224)*Assistant Editor, Global News Desk, ISMG* Ramesh has seven years of experience writing and editing stories on finance, enterprise and consumer technology, and diversity and inclusion. She has previously worked at formerly News Corp-owned TechCircle, business daily The Economic Times and The New Indian Express.[](https://twitter.com/rashmiramesh_) [](https://www.linkedin.com/in/rashmi-ramesh-57061069/) [](mailto:rramesh@ismg.io)  [whitepaper](https://www.govinfosecurity.com/whitepapers/mobile-app-friction-report-crypto-edition-onboarding-w-9716?rf=RAM_Resources)##### [Mobile App Friction Report: Crypto Edition – Onboarding](https://www.govinfosecurity.com/whitepapers/mobile-app-friction-report-crypto-edition-onboarding-w-9716?rf=RAM_Resources) [whitepaper](https://www.govinfosecurity.com/whitepapers/2021-analysis-geographic-trends-in-cryptocurrency-adoption-usage-w-9307?rf=RAM_Resources)##### [2021 Analysis of Geographic Trends in Cryptocurrency Adoption and Usage](https://www.govinfosecurity.com/whitepapers/2021-analysis-geographic-trends-in-cryptocurrency-adoption-usage-w-9307?rf=RAM_Resources) [whitepaper](https://www.govinfosecurity.com/whitepapers/top-cybersecurity-trends-2021-cryptomining-w-7928?rf=RAM_Resources)##### [Top cybersecurity trends 2021: Cryptomining](https://www.govinfosecurity.com/whitepapers/top-cybersecurity-trends-2021-cryptomining-w-7928?rf=RAM_Resources) [whitepaper](https://www.govinfosecurity.com/whitepapers/digital-documentation-authenticity-integrity-w-7895?rf=RAM_Resources)##### [Digital Documentation: Authenticity and Integrity](https://www.govinfosecurity.com/whitepapers/digital-documentation-authenticity-integrity-w-7895?rf=RAM_Resources) [whitepaper](https://www.govinfosecurity.com/whitepapers/building-future-proof-banks-w-5464?rf=RAM_Resources)##### [Building Future-Proof Banks](https://www.govinfosecurity.com/whitepapers/building-future-proof-banks-w-5464?rf=RAM_Resources) [Blockchain -& Cryptocurrency](https://www.govinfosecurity.com/blockchain-cryptocurrency-c-483)##### [Cryptohack Roundup: US Disbands Cryptocurrency Legal Team](https://www.govinfosecurity.com/cryptohack-roundup-us-disbands-cryptocurrency-legal-team-a-27968) [Artificial Intelligence -& Machine Learning](https://www.govinfosecurity.com/artificial-intelligence-machine-learning-c-469)##### [WellSpan Redefines Healthcare With Copilot](https://www.govinfosecurity.com/wellspan-redefines-healthcare-copilot-a-27966) [Election Security](https://www.govinfosecurity.com/election-security-c-913)##### [Trump Retaliates Against Former Cybersecurity Chief](https://www.govinfosecurity.com/trump-retaliates-against-former-cybersecurity-chief-a-27967) [Cloud Security](https://www.govinfosecurity.com/cloud-security-c-445)##### [A Guide to Managing Machine Identities – Part 1](https://www.govinfosecurity.com/blogs/guide-to-managing-machine-identities-part-1-p-3846) [Cloud Security](https://www.govinfosecurity.com/cloud-security-c-445)##### [A Guide to Managing Machine Identities – Part 2](https://www.govinfosecurity.com/blogs/guide-to-managing-machine-identities-part-2-p-3847)[Overview](https://www.govinfosecurity.com/webinars/risk-management-framework-learn-from-nist-w-255) * Twitter* Facebook* LinkedIn* * * From heightened risks to increased regulations, senior leaders at all levels are pressured to improve their organizations’ risk management capabilities. But no one is showing them how – until now.Learn the fundamentals of developing a risk management program from the man who wrote the book on the topic: Ron Ross, computer scientist for the National Institute of Standards and Technology. In an exclusive presentation, Ross, lead author of NIST Special Publication 800-37 – the bible of risk assessment and management – will share his unique insights on how to:* Understand the current cyber threats to all public and private sector organizations;* Develop a multi-tiered risk management approach built upon governance, processes and information systems;* Implement NIST’s risk management framework, from defining risks to selecting, implementing and monitoring information security controls.Presented By———— [Presented By](/authors/ron-ross-i-558)—————————————#### [Ron Ross](/authors/ron-ross-i-558)*Sr. Computer Scientist -& Information Security Researcher, National Institute of Standards and Technology (NIST)*

Related Tags:
NAICS: 54 – Professional

Scientific

Technical Services

NAICS: 519 – Web Search Portals

Libraries

Archives

Other Information Services

NAICS: 541 – Professional

Scientific

Technical Services

NAICS: 52 – Finance And Insurance

NAICS: 518 – Computing Infrastructure Providers

Data Processing

Web Hosting

Related Services

NAICS: 92 – Public Administration

NAICS: 922 – Justice

Public Order

Safety Activities

NAICS: 523 – Securities

Commodity Contracts

Other Financial Investments And Related Activities

NAICS: 51 – Information

Associated Indicators:
null