At a glance.
- Tornado Cash sanctions.
- Twilio breached.
- Social engineering at Klayvio.
- Intercept tools and policies in Canada.
- Apparent Chinese cyberespionage against Russian, Belarusian, and Ukrainian industry.
Treasury elaborates on sanctioning of Tornado Cash.
The US Department of the Treasury has elaborated on the sanctions it imposed yesterday on Tornado Cash, a cryptocurrency mixer Treasury connects to money laundering. Tornado Cash, Treasury says, "has been used to launder more than $7 billion worth of virtual currency since its creation in 2019. This includes over $455 million stolen by the Lazarus Group." The Lazarus Group, of course, is the North Korean cyber operations group that has for years engaged in cybercrime designed to fund Pyongyang's weapons programs and to mitigate the crippling effects of sanctions on the North Korean economy.
Under Secretary of the Treasury for Terrorism and Financial Intelligence Brian E. Nelson said, in the statement, “Despite public assurances otherwise, Tornado Cash has repeatedly failed to impose effective controls designed to stop it from laundering funds for malicious cyber actors on a regular basis and without basic measures to address its risks. Treasury will continue to aggressively pursue actions against mixers that launder virtual currency for criminals and those who assist them.” Tornado Cash's assets are blocked, and US persons are prohibited from doing business with the mixer.