customer

According to a report by 21st Century Business Herald, Futu Holdings' US stock pre-market once fell over 40%. In terms of news, the China Securities Regulatory Commission plans to decide to confiscate all illegal gains of Tiger, Futu, and Changqiao's domestic and foreign related entities, and impose severe penalties according to the law.In response, the company's customer service staff stated that the company has been paying attention to relevant regulatory developments and is carefully studying the related content. Once the information is complete, the company will respond uniformly. Currently, the company's business operations are normal, and customers' account assets and various services are not affected.

The open-source data visualization tool Grafana has released the latest progress on the investigation of the security incident on May 16. The investigation found that this incident was limited to the GitHub environment of Grafana Labs, including both public and private source code as well as internal GitHub repositories, and did not affect customer production systems, operations, or the Grafana Cloud platform. The downloaded content, in addition to the source code, also included some repositories used by the team for collaboration and storage of internal operational information and business details, involving business contact names and email addresses, rather than data from production systems or the cloud platform.Grafana Labs has made it clear that the codebase was downloaded but not tampered with, and currently, customers and open-source users do not need to take any action. The incident originated from a TanStack npm supply chain attack conducted through the Mini Shai-Hulud campaign. Grafana Labs detected malicious activity on May 11 and initiated an emergency response, but a credential was overlooked, allowing the attacker to gain access. After receiving a ransom demand on May 16, the company decided not to pay the ransom and has rotated automated credentials, implemented enhanced monitoring, audited all commits since May 11, and significantly strengthened GitHub security configurations. The company has notified federal law enforcement, and the investigation is ongoing.

American financial services giant Charles Schwab has begun to phase in the "Schwab Crypto" service for eligible U.S. retail customers, allowing users to trade Bitcoin and Ethereum directly.According to official information, users can view and manage their crypto assets directly through their existing Schwab accounts, with custody provided by Charles Schwab Premier Bank, while Paxos offers underlying custody and trade execution services. The platform charges a transaction fee of 0.75% of the transaction amount, and currently does not support external wallet deposits and withdrawals. Additionally, this service is not yet available to residents of New York and Louisiana. Charles Schwab currently manages approximately $12 trillion in client assets, with its clients holding about 20% of the assets in U.S. spot crypto ETFs.

According to BBX data, the bidirectional penetration of traditional financial institutions and industrial infrastructure into the crypto space has accelerated over the weekend, with the following core dynamics:The Charles Schwab Corporation (NYSE: $SCHW) officially launched the Schwab Crypto platform in phases on April 17, opening direct trading of Bitcoin and Ethereum spot to 39 million active brokerage account customers through its Charles Schwab Premier Bank, SSB, with compliance custody and trade execution provided by Paxos, and a fee of 75 basis points per transaction; initially excluding New York and Louisiana. The company recorded earnings per share of $1.43 and revenue of $6.48 billion in Q1 2026, with total customer assets of approximately $12.22 trillion as of early 2026.Alcoa Corporation (NYSE: $AA) CEO Bill Oplinger confirmed in a Bloomberg interview on April 17 that the company is in deep negotiations with Bitcoin financial services company NYDIG regarding the sale of the Massena East smelter site in New York (1,300 acres, closed since 2014), which "should be completed by mid-year." The site is adjacent to the St. Lawrence River and can access hydroelectric resources provided by the New York Power Authority; NYDIG has been operating Bitcoin mining facilities there since 2024 and will gain full control of the infrastructure after the acquisition. The financial terms of the transaction have not been disclosed.

According to official news, the cloud hosting platform Vercel has confirmed that a security incident has occurred, involving unauthorized access to some internal systems.Currently, only a small number of customers have been confirmed to be affected, and Vercel is communicating directly with the relevant customers. Vercel stated that its services are still operating normally, and it has initiated an investigation and hired incident response experts to assist in handling the situation, while also notifying law enforcement.Vercel recommends that all customers review their environment variables and use the sensitive environment variable feature to enhance security protection.

According to CoinDesk, Galaxy Digital (GLXY) recently experienced a cybersecurity incident where hackers gained unauthorized access to its isolated research and development workspace. The company stated that the affected environment was only used for research and development, completely isolated from core infrastructure, production systems, trading platforms, and customer accounts, with losses amounting to less than $10,000.Galaxy Digital stated that it quickly intervened, completed the lockdown and reinforcement of the compromised workspace, and deployed additional protective measures at the blockchain infrastructure level.

The Federal Court of Australia ordered Binance's Australian derivatives division (i.e., Oztures Trading Pty Ltd) to pay a fine of AUD 10 million (approximately USD 6.9 million).During the period from 2022 to 2023, the entity incorrectly classified over 85% of local customers as wholesale investors, resulting in 524 retail customers being exposed to high-risk crypto derivatives without statutory consumer protections, leading to trading losses of approximately AUD 8,660,000 (about USD 5.9 million) and fee losses of AUD 3,900,000 (about USD 2.7 million). Joe Longo, Chairman of the Australian Securities and Investments Commission (ASIC), stated that Binance failed to establish basic compliance review mechanisms and incorrectly approved hundreds of wholesale investor applications. According to the fact statement submitted to the court, Binance acknowledged flaws in its customer onboarding process, allowing applicants to repeatedly take the eligibility test until they passed, and that senior compliance personnel inadequately reviewed application materials. Binance admitted to six violations, including failing to provide product disclosure statements to retail customers, not conducting target market assessments, and not maintaining a compliant internal dispute resolution system. This fine is in addition to approximately AUD 13.1 million (about USD 9 million) in customer compensation previously supervised by ASIC. The entity's Australian financial services license was revoked in April 2023.

Bitcoin payment service provider Bitrefill disclosed on platform X that it suffered a cyberattack on March 1, 2026, resulting in a customer data breach. The attack originated from a compromised employee's laptop and allowed the attackers to access certain databases and cryptocurrency wallets.Investigations revealed that the attack method was highly similar to past attacks on cryptocurrency companies by the North Korean DPRK Lazarus/Bluenoroff hacker group. Approximately 18,500 purchase records involved limited customer information (email, cryptocurrency payment addresses, and IP metadata), with about 1,000 records having customer name information stored in an encrypted format, but potentially accessible. Bitrefill stated that customers do not need to take special actions but are advised to be vigilant for unusual information.Bitrefill further added that it has currently shut down related systems for isolation and is collaborating with security experts, on-chain analysts, and law enforcement. Operations have nearly returned to normal. The company emphasized that it is long-term profitable and financially robust enough to absorb this loss and will continue to strengthen cybersecurity measures, including internal access controls, monitoring, and emergency response mechanisms.

The Financial Intelligence Unit (FIU) of South Korea has initiated sanctions against the cryptocurrency exchange Bithumb, as the exchange was found to allow users to transfer funds to unregistered overseas trading platforms and failed to implement customer identity verification (KYC) procedures. According to Seoul News, the sanctions may include a suspension of new customer services for up to six months, while existing users' deposits and withdrawals will not be affected.This penalty adds insult to injury for Bithumb, which had previously mistakenly sent out $40 billion worth of Bitcoin due to operational errors and is currently facing an investigation by advertising regulators.The exchanges GOPAX and Coinone are also under investigation by the FIU. Competitor Upbit faced a three-month ban on new customers last year for similar violations and is currently challenging this through legal means, with a court ruling expected in April.

The IRS proposed new regulations on Thursday that would allow cryptocurrency exchanges to require customers to receive tax forms electronically, such as the 1099-DA form that reports total gains from digital asset transactions, whereas previously exchanges had to provide a paper form option.Under the new tax reporting system implemented this year, cryptocurrency exchanges are required to report total gains and cost basis, and the IRS will automatically obtain detailed profit and loss data, thereby enhancing compliance oversight for cryptocurrency holders. The new regulations also allow exchanges to terminate business relationships with customers who refuse to receive tax documents electronically. The proposal has not yet been finalized and is currently open for public comment. It has been reported that cryptocurrency tax software platforms have seen a significant increase in the number of IRS warning letters received by U.S. users, reminding them that cryptocurrency transactions may be taxable and must be reported as required.

According to market news, the Central Bank of Brazil has issued new regulations requiring licensed cryptocurrency trading platforms to submit daily reports starting January 1, 2027, proving they have sufficient funds to address risks such as hacking, and to implement data protection and confidentiality obligations in accordance with commercial banking standards.The new regulations also require exchanges to completely separate their own fiat and cryptocurrency asset accounts from customer asset accounts, and to account for cryptocurrency assets on the balance sheet according to a specialized accounting manual. In addition, regulatory authorities will impose restrictions and audits on cross-border transfers, enhancing the traceability of on-chain fund flows to curb the use of cryptocurrency assets for money laundering, tax evasion, and financing criminal activities.

According to Jinshi Data, sources say that Nvidia is preparing to launch a dedicated chip to shake up the competitive landscape of artificial intelligence computing. OpenAI is set to become one of the largest customers of Nvidia's new processor.

According to a report by The Wall Street Journal citing informed sources, the Trump administration is considering an executive order that would require banks to collect customers' citizenship data as part of its crackdown on immigration.Informed sources said that the initiative is primarily being assessed by the U.S. Department of the Treasury and could ultimately require banks to ask both new and existing customers who wish to maintain bank accounts in the U.S. for a type of unprecedented new documentation, such as passport information.

SBF posted on the X platform, stating that he listed 10 "myths" about himself and FTX, the first being "FTX is insolvent / $8 billion has disappeared." SBF claimed that the truth is FTX was solvent and is currently compensating customers at a rate of 119%-143%.He added that FTX could have repaid customers in kind, but after the lawyers paid themselves $1 billion, they chose to quickly split the assets and slowly repay the customers.

According to official news, the cross-border payment platform Payoneer announced that it will provide its nearly 2 million customers with the ability to hold, send, and receive stablecoins through a partnership with stablecoin infrastructure provider Bridge.It is reported that Bridge is dedicated to enabling businesses to quickly, securely, and conveniently integrate stablecoin payment processes into their existing products. This collaboration will help Payoneer users directly use stablecoins for cross-border payments and settlements within their familiar product experience.

Coinbase CEO Brian Armstrong posted on the X platform that enabling more x402 checkout processes is very important so that customer service personnel can work more efficiently.

According to Decrypt, the blockchain lending platform Figure has confirmed a customer data breach.Figure stated that the personal information of some customers was leaked after an employee fell victim to a social engineering attack. Figure is working with cybersecurity experts to investigate the scope of the incident and has taken measures to enhance system security.Figure advises affected customers to remain vigilant and monitor their accounts for any unusual activity. The hacker group ShinyHunters claims responsibility for the incident, stating that Figure refused to pay the ransom and has released 2.5 GB of stolen data.

According to Bloomberg, cryptocurrency exchange Gemini has announced the closure of all customer accounts in the UK, EU, and Australia. According to its announcement released on February 5, accounts in these regions will enter a withdrawal-only mode starting March 5, with plans to complete the full closure one month later. At the same time, Gemini has halted new account registrations and all incentive programs in these areas.Gemini went public in September 2025, and due to the decline in cryptocurrency prices, its stock price has fallen by approximately 23% since the beginning of 2025. On the day the news was released, its stock price further dropped by 2.8%.

Upbit released the "Digital Asset and Deposit Audit Report" audited by Sunghyun Accounting Firm, which disclosed that Upbit holds approximately 103.19% of the digital assets it intends to pay to customers, and the deposit audit results show that Upbit holds 105.72% of the funds available for customer payments.