Scammer Posing as UK Police Steals Bitcon

Every week, Information Security Media Group rounds up cybersecurity incidents in digital assets. This week, a scammer posed as police to steal bitcon, Taiwan charged 14 in a $41M fraud case, U.S. regulators lifted a consent order on Anchorage Digital, U.S. federal prosecutors said “writing code” alone is not a crime and the U.S. Commodity Futures Trading Commission expanded crypto engagement.

See Also: Post-Quantum Cryptography – A Fundamental Pillar in the Future of Cybersecurity [ES]

North Wales Police are investigating a cryptocurrency theft in which scammers stole about 2.1 million euros in bitcoin by impersonating a senior British police officer. The fraudster contacted the victim claiming that their personal documents had been found on a suspect’s phone and asked them to protect their assets.

Using this pretext, the attacker tricked the victim into entering their wallet’s seed phrase – a 12- to 24-word recovery key that grants full access to crypto holdings – on a spoofed website. Once the seed phrase was entered, the criminals drained the funds.

Taiwanese prosecutors charged 14 people linked to the BitShine crypto exchange in a fraud and money laundering case that defrauded more than 1,500 victims of 1.27 billion New Taiwan dollars – about $41 million. Taiwan’s official news agency reported that prosecutors allege BitShine, which had cleared regulatory checks, was a front for disguising the operations of unlicensed firm Biying Technology.

Authorities identified a man with the last name “Shih” as the ringleader, running Taiwan operations with his wife as Asia-Pacific director and an associate, “Yang,” overseeing business affairs. Prosecutors reportedly said the group worked with fraud rings and gang affiliates to funnel victim funds into USDT purchases, which were routed through multiple wallets to obscure transfers abroad.

The scammers laundered an estimated NT$2.3 billion between January 2024 and April. Prosecutors seek a 25-year prison term for Shih. Defendants who admitted guilt or offered restitution may face reduced sentences.

The U.S. Office of the Comptroller of the Currency has dropped a 2022 consent order against Anchorage Digital, the first federally chartered crypto bank in the United States. Regulators cited weaknesses in Anchorage’s anti-money laundering and know-your-customer controls. The OCC now says the bank’s safety and compliance measures no longer require oversight.

Anchorage CEO Nathan McCauley welcomed the decision, describing it as validation of the company’s efforts to build what he called “the world’s most regulated digital asset bank.” He said Anchorage has spent years investing in compliance infrastructure and industry standards.

The move comes amid a broader shift in U.S. regulatory attitudes toward crypto under the Trump administration, with agencies softening earlier restrictions. Other firms, including Paxos, BitGo, Ripple and Circle, have sought national trust charters, a development McCauley said will strengthen the sector.

The U.S. Justice Department signaled a shift in its approach to crypto prosecutions, with Matthew J. Galeotti, acting assistant attorney general of the criminal division, declaring that “merely writing code without ill intent is not a crime.” Speaking at an American Innovation Project event, Galeotti said prosecutors will continue to pursue fraud, money laundering and sanctions evasion but will not treat decentralized software development as inherently criminal.

His remarks follow the recent conviction of Tornado Cash co-founder Roman Storm, found guilty of operating an unlicensed money transmitting business. Galeotti said that if software is fully decentralized, automates only peer-to-peer transactions and developers lack custody of user funds, the department won’t bring charges under the statute prohibiting operation of an unlicensed money transmitting business.

The U.S. Commodity Futures Trading Commission entered the next phase of its “Crypto Sprint” initiative, building on recommendations from a presidential working group on digital asset markets. Acting Chair Caroline Pham said that the agency will begin broader stakeholder engagement and is accepting public comments on the recommendations until Oct. 20.

The move follows the first phase, launched on Aug. 4, which focused on enabling spot crypto asset trading on registered futures exchanges. Pham said that immediate federal-level trading access is a top administration priority and that public input will help shape rules for leveraged and retail trading on CFTC-registered platforms.

The upcoming phase is likely to expand to areas such as custody, registration and inter-agency coordination with the Securities and Exchange Commission. The SEC recently introduced its own “Project Crypto,” aimed at changing securities rules to accommodate blockchain-based markets while clarifying how digital assets should be classified.

The CFTC separately said it will also deploy Nasdaq’s market surveillance technology as it prepares for the broader role in regulating digital assets. The derivatives watchdog said that the system will help the agency move beyond its “90s-era legacy system” to safeguard markets from fraud, manipulation and abuse. Pham added that the platform will provide automated alerts and cross-market analytics to strengthen oversight.