Connect with us

Published

on

Privacy will unlock blockchain’s business potential

Opinion by: Eran Barak, CEO at Midnight 

It’s been almost 16 years since blockchain emerged from its esoteric fringes to enter global discourse, evidenced most recently by continued backing from Wall Street incumbents. Despite this remarkable ascendancy, the unfortunate truth is that this technology has yet to realize its true business potential. A core challenge persists: Too much sensitive data remains publicly unshielded.

The crux of the issue is that companies must keep business data confidential, and people strive to safeguard their personal information as best they can. Once data is put on a public blockchain, however, it becomes irreversibly and indefinitely exposed.

Even if a business takes every possible precaution to conceal data, mistakes made by others or vulnerabilities in the system can expose sensitive onchain data or metadata, including participants’ identities. This can lead to privacy breaches, compliance violations or both, undermining the foundational assumption that blockchain is trusted and underscoring the importance of robust measures to protect sensitive data.

On the other side of that coin, concealing activity on a blockchain can open the door to money laundering, triggering negative government responses. Instances in which this has occurred have led to a false impression that governments oppose Web3 privacy, a criterion businesses fundamentally need for them to adopt the technology. 

From whichever angle we look at it, maintaining privacy onchain is a real and complex issue for Web3. Until we solve it, businesses will not and should not be expected to cross the chasm. 

The belief that governments oppose privacy on the blockchain is wrong

Web3 entrepreneurs have grown to fear that building decentralized applications and businesses that provide financial anonymity could land them in regulatory trouble. Just look at Samourai Wallet, whose co-founders were charged with money laundering, or Tornado Cash, whose developer was sentenced to 64 months in prison for similar reasons. 

These responses have led to a consensus that governments are opposed to privacy altogether when it comes to blockchain. 

Recent: AI agents and blockchain are redefining the digital economy

This couldn’t be further from the truth. Governments don’t oppose privacy but mandate it across industries. Data protection laws, like the General Data Protection Regulation or the Health Insurance Portability and Accountability Act, are in place to ensure businesses protect our customer data from misuse and security threats.

The real issue these high-profile cases reveal is that Web3 measures to protect data have created opportunities for misuse, enabling the facilitation of criminal activities that have understandably raised serious concerns on behalf of governments. Blockchain data protection capabilities should not undermine established cross-jurisdictional laws safeguarding the global community from terrorism, human trafficking, fraud and other criminal offenses. 

This begs the question: What does privacy, done right, look like?

Selective disclosure

When it comes to using blockchain, protecting sensitive data is typically accomplished by either keeping the data offchain, or encrypting data onchain. The latter is not durable privacy given quantum computing’s rapid advances in cracking encryption. 

The advent of zero-knowledge (ZK) technology, a complex cryptographic technique, allows users to ensure sensitive data remains offchain by sharing attestations about the validity of the data instead. In Web3, ZK has emerged as a transformative way to enhance privacy as it enables untrusted parties to validate that a transaction has occurred without sharing any information about the transaction. 

Decentralized applications can exercise selective disclosure by choosing between putting data onchain (full disclosure), putting it onchain with encryption (disclosure via viewing keys) or using ZK to only publish attestation about the data (offering utility without any disclosure). Selective data disclosure only solves half of the puzzle. It was not designed to account for metadata.

The next privacy frontier

Metadata, the information surrounding our data, is an under-discussed component of blockchain’s exposure of sensitive information; it can be used to make inferences, creating an added layer of vulnerability even when the data itself is concealed. 

For example, through transaction metadata, investment and trading strategies can be inferred in addition to other behavioral patterns. For businesses, the implications of this can be detrimental to their growth and ability to stay ahead of competitors. They can’t afford to have trade secrets and strategies, or even the identities of other parties they are transacting with, made public.

The need to protect metadata and remove the ability to make inferences is paramount to security and can be addressed using a private token. Such capability can, however, be easily misused for money laundering.

If using a private token is not the solution, and using a public token does not provide sufficient levels of confidentiality, then the way to solve this challenge is to rethink Web3’s approach to protecting metadata altogether. We need to combine the benefits of both approaches, effectively creating a dual-asset system in which a public and a private token are used. Each asset functions independently, meaning specific restrictions can be placed to prevent illicit activities such as money laundering while retaining all the benefits.

A powerful framework

The dual-asset system enables confidentiality without the ailments shielding metadata usually brings, making compliance and business policy enforcement possible. By combining this tokenomics structure with selective disclosure, privacy and regulatory compliance can coexist on the blockchain, which will have resounding effects on adoption and innovation.

Opinion by: Eran Barak, CEO at Midnight.

This article is for general information purposes and is not intended to be and should not be taken as legal or investment advice. The views, thoughts, and opinions expressed here are the author’s alone and do not necessarily reflect or represent the views and opinions of Cointelegraph.

Continue Reading

Politics

Japan to classify cryptocurrencies as financial products: Report

Published

on

By

Japan to classify cryptocurrencies as financial products: Report

Japan to classify cryptocurrencies as financial products: Report

Japan’s finance regulator is planning to change the country’s laws to classify cryptocurrencies as financial products as early as 2026, according to the local outlet Nikkei.

The Financial Services Agency (FSA) plans to submit a bill to parliament to revise the Financial Instruments and Exchange Act as early as next year after having considered the changes through internal study groups, Nikkei reported on March 30 without citing a source.

The outlet reported that the details are still being finalized, but the change would see cryptocurrencies likely put under insider trading laws that currently apply to other financial products, such as stocks, which outlaw trades based on insider information.

However, cryptocurrencies are likely to be put in a separate category from securities such as stocks and bonds.

If the changes go through and crypto is regulated under the country’s finance laws, companies offering crypto would have to register with the FSA.

Nikkei reported that the regulator plans to enforce the new rules regardless of whether a company operates in Japan, but it was unclear how the laws would be enforced against overseas entities.

Also unclear was what cryptocurrencies would be regulated and how distinctions would be made between widely traded assets such as Bitcoin (BTC) and Ether (ETH) compared to speculative and high-risk tokens such as memecoins.

Japan to classify cryptocurrencies as financial products: Report

The FSA’s headquarters is in central Tokyo, just across the street from the Ministry of Finance. Source: Wikimedia

The reported upcoming change comes amid a wave of pro-crypto moves made by Japan’s regulators and government.

Related: USDC stablecoin receives approval for use in Japan, says Circle 

Earlier this month, the country issued its first license allowing a company to deal with stablecoins to SBI VC Trade, a subsidiary of the local financial conglomerate SBI, which said it was preparing to support Circle’s USDC (USDC).

The country’s ruling Liberal Democracy Party also moved ahead with reforms to slash the capital gains tax on crypto from 55% to 20% and categorize digital assets as a distinct asset class.

In February, local reports said the FSA was looking to lift a ban on crypto-based exchange-traded funds (ETFs) to align with the policy position of Hong Kong, which approved crypto ETFs for trading in April 2024.

Asia Express: Bitcoiner sex trap extortion? BTS firm’s blockchain disaster 

Continue Reading

Politics

Stop pretending technical and human vulnerabilities are separate things

Published

on

By

Stop pretending technical and human vulnerabilities are separate things

Stop pretending technical and human vulnerabilities are separate things

Opinion by: Andrey Sergeenkov, researcher, analyst and writer

Crypto founders love big promises: decentralized finance, banking the unbanked and freedom from intermediaries. Then hacks happen. In some cases, billions vanish overnight. 

On Feb. 21, 2025, the North Korean Lazarus Group stole $1.46 billion from Bybit. They sent phishing emails to staff with cold wallet access. After compromising these accounts, they accessed Bybit’s interface and replaced the multisignature wallet contract with their malicious version. When Bybit attempted a routine transfer, the hackers redirected 499,000 Ether (ETH) to addresses they controlled.

This wasn’t just a human error. This was a design failure. A system that allows human factors to enable a billion-dollar theft isn’t innovative — it’s irresponsible.

People are not protected

In just 10 days, the hackers converted all 499,000 ETH into untraceable funds, using THORChain as their primary channel. The decentralized exchange processed a record $4.66 billion in swaps in a week but implemented no safeguards against suspicious activity.

The crypto industry has created a system that cannot protect users even after they discover a theft. Some services actually profited from this crime, collecting millions in fees while processing the laundering of stolen funds.

Recent: SafeWallet releases Bybit hack post-mortem report

In February 2025, investigators ZachXBT and Tanuki42 revealed that Coinbase users lost over $300 million annually to social engineering attacks. Their report showed $65 million stolen through phishing and other social manipulation techniques in December 2024 and January 2025. According to the investigators, Coinbase failed to address known security vulnerabilities in their API keys and verification systems that make these human-targeted attacks successful. 

ZachXBT directly criticized the exchange for having “useless customer support agents” and failing to properly report theft addresses to blockchain monitoring tools, making stolen funds harder to track. One scammer even admitted to targeting wealthy users, claiming they make at least five figures a week.

These aren’t isolated cases. The US Federal Bureau of Investigation reported that ordinary crypto users lost over $5.6 billion to fraud in 2023, and social engineering drove at least half of these schemes. Americans alone lose approximately $2 billion–$3 billion annually to human vulnerability attacks. With over 600 million crypto users worldwide, conservative estimates put individual losses from social engineering at $6 billion–$15 billion in 2024. 

Barrier to adoption

Security concerns are now recognized as the main barrier to adoption by 37% of crypto users worldwide. Meanwhile, the industry continues to promote high-risk speculative assets like memecoins, where average users typically lose money while insiders profit.

While founders pitch financial freedom, millions of real people lose their savings through vulnerabilities the industry refuses to address. They’re symptoms of a fundamental problem: Crypto builders choose marketing over security.

When disasters happen, and they face pressure about security failures, crypto leaders hide behind blockchain’s “code is law” principle and offer philosophical arguments about self-sovereignty and personal responsibility. The crypto industry loves to blame ordinary users: “Don’t store keys online,” “Check addresses before sending,” “Never open suspicious files.”

Nobody is safe

Even industry leaders themselves fall victim to the same basic attacks. In January 2024, Ripple co-founder Chris Larsen lost 283 million XRP (XRP) due to storing private keys in an online password manager. DeFiance Capital founder Arthur_0x lost $1.6 million in non-fungible tokens (NFTs) and cryptocurrency simply by opening a phishing PDF file. 

These people aren’t naive beginners — they’re creators and experts of the very system that could not protect even them. They know all the security rules, but the human factor is inevitable. If even the system architects lose millions, what chance do ordinary users have?

Knowledge of security rules doesn’t provide complete protection because fever, stress, sleep deprivation or emotional distress severely affect our decision-making abilities. Attackers continuously test different approaches, waiting for moments when users become vulnerable. They evolve their tactics constantly, creating increasingly convincing scenarios, impersonations and urgent situations. 

The unchangeable nature of blockchain transactions demands extraordinary safeguards — not fewer. If users can’t reverse mistakes or thefts, the system must prevent them in the first place. True innovation means building systems that work for real humans, not theoretically perfect users. Banks learned this lesson over centuries. Crypto builders must learn it faster.

Instead, industry leaders seem to have lost touch with reality due to the extreme wealth dumped on them quickly. They’ve bought into their PR narrative, portraying them as geniuses, and started viewing themselves as visionaries.

A call to action

Vitalik Buterin lectures his audience on voting in elections and polishes his manifesto, while Justin Sun spends $6.2 million on a banana for a “unique artistic experience” — all while building an environment that makes dangerous mistakes easy to make. This approach is fundamentally dishonest. You can’t claim to revolutionize finance while providing less security than the systems you’re replacing.

What technical brilliance exists in systems that permit billion-dollar thefts and systematic fraud of ordinary users with such ease? As a core function, true technical excellence would include protecting users from permanent financial loss. A financial system that cannot secure its users’ assets is not technically advanced — it’s fundamentally incomplete.

It’s time to stop writing manifestos and promoting questionable PR stunts designed to attract a broader and more vulnerable audience. Start building genuine protections that match the level of risk your users face. No amount of blockchain innovation matters if ordinary people cannot use these systems without fear of instant, permanent financial loss.

Anything less is just reckless experimentation at users’ expense disguised as a revolution — a scheme that enriches founders and insiders while ordinary people bear all the risks.

If the industry doesn’t solve this problem, regulators will — and you won’t like their solutions. Your philosophical arguments about self-sovereignty won’t matter when licenses are revoked and operations shut down.

This is the choice crypto builders face: Either create truly secure systems that justify your claims about financial innovation or watch as regulators transform your “revolutionary technology” into another heavily regulated financial service. The clock is ticking.

Opinion by: Andrey Sergeenkov, researcher, analyst and writer.

This article is for general information purposes and is not intended to be and should not be taken as legal or investment advice. The views, thoughts, and opinions expressed here are the author’s alone and do not necessarily reflect or represent the views and opinions of Cointelegraph.

Continue Reading

Politics

California introduces ’Bitcoin rights’ in amended digital assets bill

Published

on

By

California introduces ’Bitcoin rights’ in amended digital assets bill

California introduces ’Bitcoin rights’ in amended digital assets bill

A Californian lawmaker has just added Bitcoin and crypto investor protections to a February-introduced money transmission bill aimed at securing crypto self-custody rights for the US state’s nearly 40 million residents.

California’s Assembly Bill 1052 was introduced as the Money Transmission Act on Feb. 20, 2025, but was amended by Democrat and Banking and Finance Committee chair Avelino Valencia on March 28 to include several Bitcoin (BTC) and crypto-related investor protections.

The amendments cross out “Money Transmission Act,” with the legislation now called “Digital assets.”

“California often sets the national blueprint for policy, and if Bitcoin Rights passes here, it can pass anywhere,” Satoshi Action Fund CEO Dennis Porter said in a March 30 statement.

“Once passed, this legislation will guarantee nearly 40 million Californians the right to self-custody their digital assets without fear of discrimination.”

California introduces ’Bitcoin rights’ in amended digital assets bill

Source: Satoshi Action Fund

The bill would also deem the use of a digital financial asset as a valid and legal form of payment in private transactions and would prohibit public entities from restricting or taxing digital assets solely based on their use as payment.

The bill would also expand the scope of California’s Political Reform Act of 1974 to prohibit a public official from issuing, sponsoring or promoting a digital asset, security or commodity.

“A public official shall not engage in any transaction or conduct related to a digital asset that creates a conflict of interest with their public duties,” one section of the AB 1052 states.

AB 1052 is now in the “desk process” — meaning the bill has been formally introduced and is awaiting its first reading.

A total of 99 merchants currently accept Bitcoin payments in California, BTC Maps data shows.

Ripple Labs, Solana Labs and Kraken are among the largest crypto firms based in California.

Related: New BITCOIN Act would allow US reserve to exceed 1M

A stablecoin-related bill was also introduced in California on Feb. 2, 2025, which aims to provide more clarity over stablecoin collateral requirements, liquidation processes, redemption and settlement mechanisms requirements and security audits.

Bitcoin-related bills and measures near 100 at the US state level

According to Bitcoin Law, 95 Bitcoin-related bills or measures have been introduced at the state level in 35 states, including 36 Bitcoin reserve bills that are still live.

The Texas Senate passed a Bitcoin strategic reserve bill in a 25-5 vote on March 6, while Kentucky Governor Andy Beshear signed a Bitcoin Rights bill into law on March 24.

Earlier this month, US President Donald Trump signed an executive order to create a Strategic Bitcoin Reserve and a Digital Asset Stockpile, both of which will initially use cryptocurrency forfeited in government criminal cases.

Magazine: Bitcoin payments are being undermined by centralized stablecoins

Continue Reading

Trending