TLDR

• The Senate Banking Committee advanced the Clarity Act in a 15-9 vote with two Democrats joining Republicans.
• The bill would split crypto oversight between the SEC and the CFTC and set rules for exchanges and brokers.
• Lawmakers rejected several Democratic amendments related to sanctions, ethics, and anti-money laundering measures.
• A DeFi safe harbor amendment passed 18-6 after support from a bloc of Democrats and Republicans.
• The Clarity Act will merge with the Agriculture Committee version before heading to the full Senate.

The Senate Banking Committee approved the Digital Asset Market Clarity Act in a 15-9 vote on Thursday. Sens. Ruben Gallego and Angela Alsobrooks joined 13 Republicans to move the bill forward. The measure now heads toward a merger with the Senate Agriculture Committee text before a floor vote.

Clarity Act Clears Committee With Bipartisan Support

Lawmakers advanced the Clarity Act after months of cross-party negotiations and revisions. Chair Tim Scott said the bill ends a “regulatory gray zone” for crypto firms. He added that the framework would protect consumers and keep innovation in the United States.

Sen. Cynthia Lummis called the proposal “the hardest piece of legislation” of her career. She said the bill fits new digital assets into an older regulatory system. The text splits oversight between the SEC and the CFTC and sets rules for exchanges, brokers, and custodians.

The committee rejected several Democratic amendments during the markup session. Sen. Elizabeth Warren opposed the bill and called it “a bill written by the crypto industry.” She argued that the draft weakens securities law protections that date to 1929.

Warren also warned that the bill allows banks to increase crypto exposure. She linked that risk to practices before the 2008 financial crisis. Republicans voted down her amendments in 11-13 votes.

Ethics, Sanctions, and DeFi Debates Shape Vote

Democrats raised concerns about illicit finance and stablecoins during the hearing. Sen. Jack Reed said Iranian actors use stablecoins to buy drone components. He sought authority for regulators to block foreign illicit stablecoin flows, but the amendment failed.

Sen. Chris Van Hollen cited estimates that over $150 billion moved through illicit wallets last year. He proposed penalties for releasing DeFi protocols designed for money laundering. Republicans rejected his measure and said current criminal laws already cover such conduct.

Ethics issues tied to President Donald Trump also shaped debate. Van Hollen proposed barring elected officials from crypto business ties. Sen. Bernie Moreno opposed the amendment and said it belonged in the Judiciary Committee, and the panel defeated it 11-13.

A key vote came on Lummis Amendment 122 regarding DeFi safe harbors. The committee adopted the amendment 18-6 after a technical revision. Warner, Cortez Masto, and Alsobrooks joined Republicans to support the compromise language.

Earlier, Chair Scott limited the number of amendments under committee rules. He later reinstated selected proposals to secure bipartisan backing. By the final vote, Gallego and Alsobrooks provided the Democratic support needed for the 15-9 outcome.

The company said the program is designed to promote institutional yield generation and cross-chain returns for a wider range of users through stablecoin-based lending and liquidity strategies.

TownSquare announced the launch of a $100 million liquidity program tied to the USD1 stablecoin as the decentralized finance platform seeks to expand institutional yield opportunities and cross-chain lending infrastructure. According to reports from ChainCatcher, the initiative will use USD1, the stablecoin developed by World Liberty Financial, to provide broader access to institutional-grade DeFi strategies.

TownSquare focuses on institutional yield infrastructure and brokerage services spanning multiple blockchain ecosystems.

The announcement follows TownSquare’s earlier collaboration with the World Liberty Financial DeFi team to introduce the USD1 token to the high-performance EVM blockchain Monad. The project also received incentives from the Monad Foundation as part of that integration effort.

Institutional DeFi competition accelerates

TownSquare said the new liquidity initiative reflects its long-term commitment to expanding decentralized finance adoption and bringing institutional trading and yield strategies to additional blockchain ecosystems. The company’s platform has already launched cross-chain lending functionality, while a dedicated yield-generating product remains in development.

According to official project information, TownSquare previously secured backing from major crypto-focused investors and ecosystem participants including Andreessen Horowitz, Monad, Aptos, and Solana-linked Bonk contributors, alongside several European and U.S.-based venture capital firms and angel investors.

The project’s team reportedly includes former employees from Coinbase, Meta, and Accenture, as well as market-making firms involved in crypto liquidity infrastructure.

The launch comes amid rising competition among stablecoin issuers and DeFi protocols seeking to attract institutional capital. In a previous crypto.news story, Circle expanded its partnership with Hyperliquid to strengthen USDC’s role in decentralized trading and cross-chain liquidity.

Institutional demand for blockchain-based yield products has also accelerated alongside the growth of tokenized assets and stablecoin markets. Another crypto.news story detailed Grove’s launch of a $1 billion liquidity network supporting tokenized Treasury funds including BlackRock’s BUIDL product.

As DeFi platforms increasingly compete for institutional users, TownSquare’s USD1 liquidity initiative signals growing efforts to merge traditional yield strategies with on-chain lending and stablecoin infrastructure.

North Korea’s state-affiliated hackers intensified their footprint in the crypto ecosystem during 2025, delivering losses exceeding $2 billion and marking a 51% year-over-year rise, according to CrowdStrike’s 2026 Financial Services Threat Landscape Report. The findings position DPRK-linked actors as the largest threat by the dollar value of assets stolen, underscoring a shift toward high-value targets and increasingly sophisticated operational security.

According to the report, the DPRK threat network pursued fewer campaigns than in previous years but achieved substantially higher returns by focusing on high-value targets and tightening the chain from theft to cash-out. The stolen proceeds are believed to be laundered to fund the regime’s military programs, a pattern CrowdStrike notes as a persistent objective of these actors. The group’s emphasis on centralized, high-impact operations contrasted with a broader spread of lower-value incidents seen in earlier years.

Key takeaways

• DPRK state-affiliated actors caused more than $2 billion in crypto losses in 2025, up 51% from the previous year, per CrowdStrike’s 2026 report.
• The DPRK remains the largest threat group by the dollar value stolen, reflecting a strategic pivot toward high-value targets and efficient monetization.
• Web3 projects and cryptocurrency exchanges were favored targets due to easier liquidity and greater anonymity when cashing out, according to the threat landscape findings.
• Stolen funds are likely laundered to fund military programs, with fewer campaigns delivering markedly higher returns, signaling a shift in attack economics.
• Infiltration and social engineering efforts extend beyond cyberspace, with offline touchpoints and third-party intermediaries playing a role in more sophisticated operations.

Escalating losses and a high-value playbook

CrowdStrike’s assessment highlights a paradox at work: even as the number of campaigns declined, the financial impact surged because the group prioritized larger, more lucrative targets. The firm notes that stolen assets are largely funneled into channels that maximize anonymity and liquidity, enabling quicker conversion to usable funds while evading traditional financial controls. The recurrence of such patterns suggests a deliberate shift to maximize value per operation rather than sheer volume of incidents.

“Stolen proceeds are almost certainly laundered to fund the regime’s military programs. Compared to 2024, DPRK-nexus adversaries conducted fewer campaigns but achieved significantly higher returns by prioritizing high-value targets.”

These conclusions come as the threat landscape signals a maturation of DPRK-linked operations, with investigators pointing to an expanding toolkit that blends traditional intrusion with social engineering and supply-chain-style compromises. The report also emphasizes that the group’s willingness to exploit weaknesses in crypto firms—ranging from project teams to exchanges—illustrates a broad targeting strategy that aims to maximize both access and monetization opportunities.

Why Web3 and exchanges remain focal points

Wednesday’s security discourse around DPRK actors centers on the economics of crypto theft. The report notes that high-value wallets and centralized exchanges offer deeper liquidity and faster exit routes, which reduces the time funds spend exposed to tracing and seizure risks. In this sense, the attraction of Web3 projects and crypto platforms is not merely about theft but about the ability to convert stolen assets into spendable currency with less friction than traditional financial rails.

Beyond the direct thefts, the broader ecosystem should watch for evolving social engineering strategies designed to exploit the trust networks around developing protocols and governance processes. As the threat model grows more sophisticated, the importance of robust security practices—such as rigorous vendor risk management, code review, and phishing-resistant authentication—takes on renewed urgency for builders and operators across the crypto space.

Infiltration, online and offline: notable incidents

In April, the Ethereum Foundation, which oversees Ethereum’s development, publicly flagged the scale of DPRK involvement in Web3 intrusions, identifying a substantial cohort of DPRK-backed operatives infiltrating various crypto projects. The implication is that the group maintains persistent, multi-pronged access to target ecosystems, combining remote intrusions with on-the-ground networking to extend influence.

One widely cited episode involves Drift Protocol, a decentralized exchange, where attackers purportedly infiltrated and compromised developer environments after forming relationships with the project’s team. The Drift Protocol team reported that the attackers were introduced to the project during a prominent crypto industry conference and cultivated a working relationship over six months. During this engagement, malware was deployed against developer machines, contributing to approximately $280 million in losses. Drift’s leadership stressed that the individuals who appeared in person were not North Korean nationals, but noted that DPRK actors often rely on third-party intermediaries to facilitate face-to-face contacts.

The broader narrative around offline reconnaissance and in-person recruitment is reinforced by separate industry observations, including reports of North Korean IT workers engaging with technology companies and leveraging legitimate employment channels to facilitate illicit activities. Researchers such as ZachXBT have highlighted cases where DPRK-linked IT workers earned substantial monthly sums in related schemes, underscoring the cross-cutting nature of the threat across online and offline environments.

For investors, builders, and operators, these incidents signal an ongoing arms race between threat actors and the security teams safeguarding crypto platforms. The Drift episode, in particular, demonstrates how attacker footholds can be planted through trusted development channels, turning core software supply chains into vectors for large losses. The broader warning is clear: even seemingly trusted community interactions and third-party engagements can become risk surfaces if due diligence and security hygiene are not robustly maintained.

What comes next for the market and defense strategy

As the threat landscape crystallizes around DPRK-backed operations, market participants should expect continued emphasis on high-value theft and sophisticated monetization techniques. Regulators, security firms, and platform teams are likely to double down on governance controls, supply-chain security, and enhanced monitoring of on-chain flows associated with known DPRK-linked wallets and entities. The convergence of cyber intrusions, social engineering, and high-ROI theft strategies points to a persistent, dynamic risk that will test the resilience of crypto infrastructure and compliance programs alike.

Going forward, observers will be watching for more granular disclosures from threat intelligence firms and platform operators about the operational patterns of DPRK actors, including any new countermeasures that successfully disrupt the most lucrative channels. The Ethereum Foundation’s identification of hundreds of DPRK-backed operatives and Drift Protocol’s post-incident reflections may foreshadow a broader push for transparency and proactive defense across the ecosystem. For readers, the key question remains how quickly the industry can translate these insights into concrete security improvements that reduce both the frequency and impact of future breaches.

As the year unfolds, the crypto community will need to monitor both governance responses and technical safeguards. Investors and users should maintain vigilance around project security audits, multi-party computation protections, and robust incident-response planning—areas where the cost of inaction can be measured in millions of dollars along with potentially lasting reputational damage.

A US federal judge has sentenced the former chief revenue officer of defunct cryptocurrency lending platform Celsius to time served after almost three years following his arrest on fraud and conspiracy charges.

In a sentencing hearing in the US District Court for the Southern District of New York on Wednesday, Judge John Koeltl ordered that Roni Cohen-Pavon be sentenced to time served and one year of supervised release for his role in manipulating the price of Celsius’s CEL token and fraud on the platform.

The former chief revenue officer initially pleaded not guilty to four charges following his arrest in September 2023, changing his plea to guilty about a week later.

Alex Mashinsky at the Bitcoin 2021 conference in Miami. Source: Cointelegraph

Cohen-Pavon was indicted along with former CEO Alex Mashinsky in July 2023 after the 2022 collapse of Celsius, which led to billions of dollars’ worth of investor and user losses.

Cohen-Pavon, an Israeli citizen and resident, was outside the US when prosecutors filed the indictment, but later reentered the country for his arraignment. He posted a $500,000 bond in September 2023 and has been free to travel with some restrictions.

With the sentencing of Cohen-Pavon and Mashinsky, who is already serving 12 years following his guilty plea, the criminal cases involving Celsius are winding down. The former CEO was ordered to pay $48 million as part of a forfeiture in his criminal case, while Cohen-Pavon agreed to pay more than $1 million and a $40,000 fine.

Related: Celsius founder Alex Mashinsky settles FTC case with $10M payment

“Whatever sentence the Court imposes, the deeper obligation will remain the same,” said Cohen-Pavon in a letter to Koeltl before his sentencing. “I will have to spend the rest of my life becoming, through my conduct, the husband, father, and man my family had every right to expect from me all along.”

The sentencing memorandum for Roni Cohen-Pavon. Source: Court Listener

Tornado Cash co-founder still potentially looking at SDNY retrial

Roman Storm, the co-founder of crypto mixing service Tornado Cash, still faces a possible retrial on two charges in the Southern District of New York after a jury failed to reach a verdict in his trial last year.

Prosecutors requested that a judge schedule the proceedings in October to retry Storm on money laundering and sanctions violation conspiracy charges, for which the jury deadlocked.

The terms of Storm’s $2 million bail restrict the Tornado Cash co-founder to certain areas of New York, Washington and California. However, on Thursday, a federal judge granted him permission to “attend his niece’s high school graduation” in El Dorado Hills, California.

Magazine: eToro founder timed Bitcoin top perfectly due to belief in 4 year cycles

TLDR

• World Liberty co-founder Zak Folkman said the $75 million Dolomite loan was small compared to posted collateral.
• Folkman stated that the borrowing aimed to increase utilization and liquidity on Dolomite Markets.
• Onchain data showed that more than $40 million of the borrowed funds moved to Coinbase Prime.
• DeFi analysts raised concerns in April about concentration and liquidation risks tied to the WLFI position.
• Justin Sun filed a lawsuit alleging that World Liberty froze his tokens and restricted governance access.

World Liberty co-founder Zak Folkman addressed a $75 million Dolomite borrowing position and a lawsuit from Justin Sun at Consensus 2026. He said the loan represented a small share of posted collateral and aimed to increase protocol usage. He also confirmed that World Liberty hired Quinn Emanuel and rejected Sun’s claims as false.

World Liberty Explains WLFI and USD1 Loan Activity on Dolomite

Folkman said World Liberty acted as the largest liquidity supplier on Dolomite Markets before taking a limited loan. He stated that the team posted about 5 billion WLFI tokens as collateral and borrowed roughly $75 million in USD1 and USDC. He described the move as “a very, very small loan” compared with the collateral size, and he said the goal focused on raising utilization rates.

He added that the strategy helped expand liquidity across the protocol over time. Onchain data from Arkham showed that the wallet later transferred over $40 million to Coinbase Prime. However, DeFi analysts on X raised concerns in April and warned about concentration and liquidation risks tied to the WLFI-backed position.

Folkman said the borrowing strategy followed internal planning and transparent smart contract rules. He stressed that all contract functions remain visible on Etherscan and other public explorers. He maintained that the position size did not threaten lenders based on posted collateral levels.

He also said the team monitored utilization and liquidity metrics during the borrowing period. He stated that World Liberty reduced its position as liquidity expanded. He reiterated that the company aimed to support growth within Dolomite rather than extract value.

World Liberty Rejects Justin Sun Claims and Files Defamation Case

Folkman also addressed a lawsuit filed by Tron founder Justin Sun in a California federal court on April 22. Sun alleged that World Liberty froze his tokens and excluded him from governance. He also claimed that the WLFI contract contained undisclosed blacklist features and threatened permanent token burns.

Folkman said World Liberty felt “blindsided” by the filing and denied all allegations. He said the project retained Quinn Emanuel to pursue a defamation case against Sun. He described the matter as “cut and dry” and called Sun’s statements “blatantly false.”

He said the 20% unlock terms appeared clearly in the project’s terms and conditions. He also stated that smart contract features remained publicly accessible on blockchain explorers. He argued that no hidden blacklist functions existed beyond disclosed parameters.

Folkman further said World Liberty faces heavier scrutiny due to its ties to President Donald Trump. He described the connection as both a “blessing and curse” for distribution and growth. He stated that the association accelerated adoption while increasing media and public attention.

TLDR

• Blockchain.com has launched crypto-backed loans for users worldwide.
• The product allows clients to borrow against Bitcoin, Ethereum, and USDC without selling their assets.
• Loan rates start at 1.9% per year, making the offering competitive in the market.
• The service targets large crypto holders seeking liquidity for property, business, and tax needs.
• CEO Peter Smith said crypto-backed lending has been one of the most requested products on the platform.
• Blockchain.com stated it will use its existing liquidity, infrastructure, and risk systems to support the rollout.

Blockchain.com has introduced crypto-backed loans for clients worldwide. The company now allows users to borrow against Bitcoin, Ethereum, and USDC without selling holdings. Loan rates start at 1.9% per year, and the product targets large digital asset holders seeking liquidity.

Blockchain.com Expands Lending Access for Bitcoin, Ethereum, and USDC

Blockchain.com confirmed global availability of its crypto-backed loans product. The service enables clients to pledge Bitcoin as collateral and secure cash for major expenses. Borrowers can fund property purchases, business investments, and tax obligations through structured loans.

The company stated that rates begin at 1.9% annually, positioning the offer competitively. It is designed for high-value accounts seeking larger borrowing limits. It also structured the loans to let clients maintain market exposure while accessing capital.

Blockchain.com included Ethereum in the approved collateral list at launch. Clients can lock Ethereum holdings and receive liquidity without executing a sale. The structure supports long-term holders who prefer to retain digital assets during financing.

The firm also approved USDC as eligible collateral under the program. Users can pledge USDC to unlock funding for various permitted uses. However, the company said loan purposes may differ depending on the jurisdiction.

CEO and founder Peter Smith addressed the demand for the new product. He said, “Crypto-backed lending has been one of the most requested products on our platform.” He added that the company plans to compete aggressively in the category.

Smith emphasized existing operational strength within the company. He said Blockchain.com does not enter the lending market from a standing start. He pointed to established liquidity, infrastructure, and risk management systems.

The company stated that these systems already support institutions and wealth clients. It will now extend those capabilities to a broader customer base. The rollout forms part of its consumer and wealth expansion strategy.

Company Targets High Net Worth Clients as Crypto Lending Tops $70 billion

Blockchain.com launched the product as the crypto-backed lending market surpassed $70 billion. The company cited growing demand from holders seeking structured liquidity solutions. It aims to provide competitive pricing and higher borrowing capacity.

The firm said it operates across more than 70 jurisdictions worldwide. It reported processing over $1.2 trillion in transactions to date. It will leverage this footprint to distribute the lending product globally.

Blockchain.com also plans to expand into lending transfers for high-net-worth individuals. The company said it will use blockchain infrastructure to streamline crypto-backed credit. It aims to position its platform as a financial hub for digital asset users.