Thursday, June 1 2023

By Stanley I. Foodman

Don’t expect aligned, coherent rules anytime soon

Multiple enforcement agencies within the US government agree that the $2.5 trillion crypto industry needs regulation. And heads of the largest crypto companies have told Congress that they agree. But therein lies the rub: competing government initiatives have yet to arrive at consensus on multiple fronts: pending legislative and regulatory proposals struggle to define cryptocurrencies, let alone how they will be regulated and taxed.

A litany of questions remains

Is crypto a commodity or a security? Is crypto the financial system of the future, or the hub of money laundering criminals? Will regulations be overseen by the US Office of Foreign Assets Control? The Justice Department’s new National Cryptocurrency Enforcement Team? The Financial Action Task Force? The Securities and Exchange Commission? The Financial Crimes Enforcement Network? State and local governments? The judicial system? All of these all have reports, proposals and recommended enforcement resources.

Who will prosecute bad actors? Will the focus be on the crypto criminals themselves or the “enablers” that help foreign clients hide assets in the American financial system.  These could include trust companies, lawyers, accountants, notaries, real estate agents, dealers in precious metals and stones, art dealers, casinos and even public relations firms.

While lawmakers wrestle with definitions, the digital currency industry continues to grow exponentially, with 21 bitcoin and blockchain leaders making the coveted Forbes 30 Under 30 list for 2021. There is no doubt that the crypto industry, and its holdings, are on the rise.

Hearings, lobbying and a soupcon of desperation

Charles Cascarilla, chief executive and co-founder of Paxos Trust Company, the back-end infrastructure provider powering PayPal’s cryptocurrency exchange, testified at the House Financial Services Committee hearing on regulation of digital assets on December 8. “We need clear standards and the government’s support to create a new, more secure, more competitive financial system. The benefits of getting this right are enormous — but so are the consequences of getting it wrong.”

The subtext throughout the hearing: if the virtual currency regulations are too stringent, the players will simply leave the U.S. to operate offshore. Banks want Congress to apply the same level of regulatory scrutiny to crypto startups as they do traditional lenders. In its statement to the Congressional committee, the American Bankers Association argued that firms offering bank-like services should receive bank-like regulation.

Can’t we all get along?

While U.S. Deputy Treasury Secretary Wally Adeyemo considers digital assets a potentially transformative innovation, much remains unknown. Speaking at the Chainalysis LINKS Conference in November, Adeyemo said, “We don’t know how this new technology will evolve, but we know that like other innovations, they offer the potential to unlock new opportunities.”

Government regulation fosters responsible innovation through “clear rules of the road that mitigate these risks while preserving the economic opportunities this technology creates,” he said.

But then there are the existing and proposed penalties, fines, taxes and regulations from myriad agencies.

Proposed Regulations

Definitive regulations seem far off, given the confusing, and repetitive world of those being proposed. Here are the leading players.

NCET

Enter stage left: The Department of Justice’s National Cryptocurrency Enforcement Team (NCET), which focuses on directing enforcement resources towards the financial ecosystem that allows ransomware and similar threats to flourish. NCET is composed of federal prosecutors from the Money Laundering Asset Recovery Section (MLARS), the Computer Crime and Intellectual Property Section (CCIPS), and Assistant U.S. Attorneys detailed from U.S. Attorneys’ offices around the country.

It plans to “investigate, support, and pursue cases against cryptocurrency exchanges, infrastructure providers, and other entities that are enabling the misuse of cryptocurrency and related products to commit or facilitate criminal activity.”

Additionally, the NCET will provide training, advise government agencies, and support coordination and information sharing among federal, state, local, tribal, and international law enforcement agencies.

This announcement represents a shift in focus from the criminal actors themselves to the companies that provide the services and technology in the crypto space to make the crimes possible.

Enablers

Then there is the bipartisan Establishing New Authorities for Business Laundering and Enabling Risks to Security (Enablers) Act. It would also update the 51-year-old Bank Secrecy Act, which requires banks to investigate their clients and the source of their wealth. In effect, the new provisions would expand FinCen’s 2020 Anti-Money Laundering Act.

U.S. Deputy Treasury Secretary Wally Adeyemo clarified at the Chainalysis conference that “ransomware is not a cryptocurrency problem,” although he leaned on the government’s perception that the misuse of virtual currencies results in cybercrime and is a national security problem.

SEC and OFAC

Both the Securities and Exchange Commission (SEC) and the Commodity Futures Trading Commission (CFTC), through their respective directors of enforcement, recently emphasized their focus on enforcement targeting the cryptocurrency sector.

October 2021 also saw the Office of Foreign Asset Control (OFAC) release updated guidance on sanctions compliance for the virtual currency industry. Then, on Nov. 8, 2021, FinCEN released a new advisory on ransomware, reiterating that disrupting payment mechanisms used by cybercriminals to stop ransomware attacks is a high priority of the federal enforcement establishment. It also reminds companies to implement appropriate compliance programs to identify and report suspicious cyber-related activity.

The issues identified in his remarks that must be addressed by the U.S. Government are centered around the risks and national security concerns of AML, terrorist financing, and ransomware.

Treasury Department and FATF

In addition, there is the Treasury’s recently released Bank Secrecy Act Report on Ransomware Trends. It provides an industry snapshot of the suspicious activity reports that FinCEN received during the first half of 2021.

The Financial Action Task Force (FATF) issued an updated Virtual Currency Guidance in October 2021. Stating that it wishes to clarify its recommendations about virtual assets, it goes on for 109 pages that are anything but clear.

Its chief recommendation is that the crypto industry should not wait for the Treasury to act and should police its own platforms for compliance.

The Bottom Line

When it comes to government regulation of the burgeoning virtual currency industry, there currently is no clear guidance. Don’t expect rules alignment any time soon.

While we wait for decisions on whether crypto is currency, security, commodity, utility or a new tulip craze, my best advice is to carry on and stay calm.

The author, Stanley I. Foodman, CEO of Foodman CPAs & Advisors.
Stanley I. Foodman, chief executive of Foodman CPAs & Advisors.

A version of this article originally appeared on the Foodman CPAs blog.

Previous

Cyber Deals: PlainID, Noname Security, UncommonX, Entegra

Next

Cyber Executive Moves: AmEx, Cybereason, HackerOne

Check Also

Widget

Don’t Miss

Cloudburst Technologies Raises $3 million in Seed Funding

Julia Bischoff

Cloudburst Technologies, a monitoring and threat intelligence provider, announced that they raised $3 million in their seed investment round. Investments were led by Strategic Cyber Ventures with participation from Coinbase Ventures and Bloccelerate. Cloudburst Technologies specifically provides tools aimed at tracking and combating fraud in the cryptocurrency market. Investigators can do so without relying on […]

Two people collaborating over a computer by Desola Lanre-Ologun

Cyber Deals: Cloudburst, HUB Security, and Soucepass

Julia Bischoff

Cybersecurity venture funding activity and mergers and acquisitions: This week’s most sizable deals included AI powered security service providers and computing platforms. Funding Threat solutions provider for cryptocurrency Cloudburst Technologies raised $3 million in the seed funding round led by Strategic Cyber Ventures in order to help build on their current technology. HUB Security, a […]

Cyber Executive Moves: Vimeo, IntelePeer, National Cybersecurity Center, and More

Julia Bischoff

Former Tesla CISO joins Vimeo, NCC welcomes new board members, and Greenway Health hires new CISO. Video sharing platform Vimeo welcomes Mark Carter as their first chief information security officer. Carter has a variety of experience in the industry including serving as chief information security officer at Tesla.    Greenway Health, a health services software […]

NetBox Labs Raises $20 Million in Series A To Drive Open Source Transformation of Networking Industry

SecureDisruptions

NetBox Labs, an open source network management and automation startup, announced it has raised $20 million in Series A funding. Flybridge Capital is leading the investment with participation from GGV Capital, Grafana Labs CEO Raj Dutt, Mango Capital, Salesforce Ventures, Two Sigma Ventures, IBM, the Founder Collective, and Entrée Capital. As part of the round, […]

Fivecast Completes $20M Series A Raise With New US and Existing Australian Venture Investors

SecureDisruptions

US-based cybersecurity venture capital firm Ten Eleven leads funding, joining existing backers in CSIRO’s Main Sequence and South Australian Venture Capital Fund Australian open-source intelligence software company, Fivecast, has closed its Series A funding round with almost $20 million (AU$30m) raised to fuel its expansion and service contracts in key markets, including Five Eyes nations, […]

Push Security Raises $15M and Launches New Visibility and Employee-Powered Tools to Help Enterprises Scale SaaS Security

SecureDisruptions

LONDON–(BUSINESS WIRE)–Push Security, a SaaS security company, has raised $15M in Series A funding. GV (Google Ventures) led the funding with participation from Decibel and notable angels, including Dug Song, co-founder and former CEO at Duo Security, and Tray.io co-founder and CEO Rich Waldron. GV General Partner Karim Faris and Jon Oberheide, co-founder and former […]