Wednesday, May 18 2022

By Stanley I. Foodman

Don’t expect aligned, coherent rules anytime soon

Multiple enforcement agencies within the US government agree that the $2.5 trillion crypto industry needs regulation. And heads of the largest crypto companies have told Congress that they agree. But therein lies the rub: competing government initiatives have yet to arrive at consensus on multiple fronts: pending legislative and regulatory proposals struggle to define cryptocurrencies, let alone how they will be regulated and taxed.

A litany of questions remains

Is crypto a commodity or a security? Is crypto the financial system of the future, or the hub of money laundering criminals? Will regulations be overseen by the US Office of Foreign Assets Control? The Justice Department’s new National Cryptocurrency Enforcement Team? The Financial Action Task Force? The Securities and Exchange Commission? The Financial Crimes Enforcement Network? State and local governments? The judicial system? All of these all have reports, proposals and recommended enforcement resources.

Who will prosecute bad actors? Will the focus be on the crypto criminals themselves or the “enablers” that help foreign clients hide assets in the American financial system.  These could include trust companies, lawyers, accountants, notaries, real estate agents, dealers in precious metals and stones, art dealers, casinos and even public relations firms.

While lawmakers wrestle with definitions, the digital currency industry continues to grow exponentially, with 21 bitcoin and blockchain leaders making the coveted Forbes 30 Under 30 list for 2021. There is no doubt that the crypto industry, and its holdings, are on the rise.

Hearings, lobbying and a soupcon of desperation

Charles Cascarilla, chief executive and co-founder of Paxos Trust Company, the back-end infrastructure provider powering PayPal’s cryptocurrency exchange, testified at the House Financial Services Committee hearing on regulation of digital assets on December 8. “We need clear standards and the government’s support to create a new, more secure, more competitive financial system. The benefits of getting this right are enormous — but so are the consequences of getting it wrong.”

The subtext throughout the hearing: if the virtual currency regulations are too stringent, the players will simply leave the U.S. to operate offshore. Banks want Congress to apply the same level of regulatory scrutiny to crypto startups as they do traditional lenders. In its statement to the Congressional committee, the American Bankers Association argued that firms offering bank-like services should receive bank-like regulation.

Can’t we all get along?

While U.S. Deputy Treasury Secretary Wally Adeyemo considers digital assets a potentially transformative innovation, much remains unknown. Speaking at the Chainalysis LINKS Conference in November, Adeyemo said, “We don’t know how this new technology will evolve, but we know that like other innovations, they offer the potential to unlock new opportunities.”

Government regulation fosters responsible innovation through “clear rules of the road that mitigate these risks while preserving the economic opportunities this technology creates,” he said.

But then there are the existing and proposed penalties, fines, taxes and regulations from myriad agencies.

Proposed Regulations

Definitive regulations seem far off, given the confusing, and repetitive world of those being proposed. Here are the leading players.

NCET

Enter stage left: The Department of Justice’s National Cryptocurrency Enforcement Team (NCET), which focuses on directing enforcement resources towards the financial ecosystem that allows ransomware and similar threats to flourish. NCET is composed of federal prosecutors from the Money Laundering Asset Recovery Section (MLARS), the Computer Crime and Intellectual Property Section (CCIPS), and Assistant U.S. Attorneys detailed from U.S. Attorneys’ offices around the country.

It plans to “investigate, support, and pursue cases against cryptocurrency exchanges, infrastructure providers, and other entities that are enabling the misuse of cryptocurrency and related products to commit or facilitate criminal activity.”

Additionally, the NCET will provide training, advise government agencies, and support coordination and information sharing among federal, state, local, tribal, and international law enforcement agencies.

This announcement represents a shift in focus from the criminal actors themselves to the companies that provide the services and technology in the crypto space to make the crimes possible.

Enablers

Then there is the bipartisan Establishing New Authorities for Business Laundering and Enabling Risks to Security (Enablers) Act. It would also update the 51-year-old Bank Secrecy Act, which requires banks to investigate their clients and the source of their wealth. In effect, the new provisions would expand FinCen’s 2020 Anti-Money Laundering Act.

U.S. Deputy Treasury Secretary Wally Adeyemo clarified at the Chainalysis conference that “ransomware is not a cryptocurrency problem,” although he leaned on the government’s perception that the misuse of virtual currencies results in cybercrime and is a national security problem.

SEC and OFAC

Both the Securities and Exchange Commission (SEC) and the Commodity Futures Trading Commission (CFTC), through their respective directors of enforcement, recently emphasized their focus on enforcement targeting the cryptocurrency sector.

October 2021 also saw the Office of Foreign Asset Control (OFAC) release updated guidance on sanctions compliance for the virtual currency industry. Then, on Nov. 8, 2021, FinCEN released a new advisory on ransomware, reiterating that disrupting payment mechanisms used by cybercriminals to stop ransomware attacks is a high priority of the federal enforcement establishment. It also reminds companies to implement appropriate compliance programs to identify and report suspicious cyber-related activity.

The issues identified in his remarks that must be addressed by the U.S. Government are centered around the risks and national security concerns of AML, terrorist financing, and ransomware.

Treasury Department and FATF

In addition, there is the Treasury’s recently released Bank Secrecy Act Report on Ransomware Trends. It provides an industry snapshot of the suspicious activity reports that FinCEN received during the first half of 2021.

The Financial Action Task Force (FATF) issued an updated Virtual Currency Guidance in October 2021. Stating that it wishes to clarify its recommendations about virtual assets, it goes on for 109 pages that are anything but clear.

Its chief recommendation is that the crypto industry should not wait for the Treasury to act and should police its own platforms for compliance.

The Bottom Line

When it comes to government regulation of the burgeoning virtual currency industry, there currently is no clear guidance. Don’t expect rules alignment any time soon.

While we wait for decisions on whether crypto is currency, security, commodity, utility or a new tulip craze, my best advice is to carry on and stay calm.

The author, Stanley I. Foodman, CEO of Foodman CPAs & Advisors.
Stanley I. Foodman, chief executive of Foodman CPAs & Advisors.

A version of this article originally appeared on the Foodman CPAs blog.

Previous

Cyber Deals: PlainID, Noname Security, UncommonX, Entegra

Next

Cyber Executive Moves: AmEx, Cybereason, HackerOne

Check Also

Widget

Don’t Miss

Cyber Deals: Datadog, AutoRABIT, Teleport, YL Ventures

Corey Campbell

CYBERSECURITY VENTURE FUNDING AND MERGERS: This week’s largest venture rounds INVOLVED Identity and Access Management, email security, and API security. Observability and managed security TOOLS REMAIN STRONG TARGETS FOR STRATEGIC BUYERS. Funding SaaS observability company Observe, Inc. has secured $70 million in a series A-2 funding round with participation from Sutter Hill Ventures (SVH), Capital […]

Abnormal Security Raises $210M in Series C Funding Round

SecureDisruptions

Abnormal Security, the leading AI-based cloud-native email security platform, announced today the close of a $210 million Series C round of financing led by global software investor Insight Partners, with participation from Greylock Partners and Menlo Ventures. With this round, the 4-year-old company is now valued at $4 billion. The move to hybrid work fueled […]

Datadog to Acquire Hdiv Security

SecureDisruptions

Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications, today announced it has entered into a definitive agreement to acquire Hdiv Security, a leading security-testing software provider. The addition of Hdiv Security’s capabilities to Datadog’s Cloud Security Platform will enable a more comprehensive approach to application security. Hdiv Security’s product monitors application behavior to […]

Traceable AI Raises $60 Million IN Series B Funding Round

SecureDisruptions

Traceable AI, the API security & observability company, today announced it has raised $60 million in Series B funding. This new funding values Traceable AI at more than $450 million. This investment round was led by Institutional Venture Partners (IVP), and other investors include Tiger Global Management and existing investors Unusual Ventures and BIG Labs. Traceable AI plans to […]

Network Perception Secures $13 Million in Series A Funding Round

SecureDisruptions

Network Perception, innovators of operational technology (OT) solutions which protect mission-critical assets, announced today that it has raised $13 million in Series A financing. The funding round was led by The Westly Group with participation from Energy Impact Partners and other existing investors, including Serra Ventures, Okapi Venture Capital, Energy Foundry and SaaS Venture Capital. […]

Cyber Executive Moves: Accenture, CISA, Shift5

Julia Bischoff

The CISA and Department of Energy gain new cybersecurity veterans. CISOs Connect names a new president. Information technology management company Accenture appointed Paolo Dal Cin as global head of Accenture Security and as a member of Accenture’s Global Management Committee. Dal Cin has been with the company since 2003 and most recently led security teams […]