Crypto added to Treasury cyber alerts
The U.S. Treasury said crypto firms can now sign up for the same cybersecurity warning system that shares threat intelligence with traditional financial firms, widening access to early hacker alerts. Officials argued earlier notice of state‑linked or organised cyber threats could become a practical edge for custodians, exchanges, bridges and market‑makers. (coindesk.com)
A bank in New York and a crypto exchange in Miami can now get the same kind of early hacker warning from the U.S. Treasury. On April 9, the Treasury Department said eligible U.S. digital asset firms can join a threat-sharing channel that had mainly served traditional finance. (coindesk.com) The office running it is the Treasury’s Office of Cybersecurity and Critical Infrastructure Protection. Treasury said the goal is to send “timely, actionable” cyber information to eligible U.S. digital asset firms and industry groups before an attack spreads. (nextgov.com) This is not a bailout fund or a new regulator. It is more like a neighborhood alarm system: if one firm sees a phishing lure, a malicious internet address, or a wallet-draining trick, other firms can hear about it faster. (nextgov.com) Treasury is making this move after a long run of crypto thefts that looked less like random crime and more like industrialized intrusion. The Federal Bureau of Investigation said North Korea was responsible for the roughly $1.5 billion theft from Bybit on February 21, 2025. (ic3.gov) Blockchain investigators say the pattern has been getting worse, not better. Chainalysis said North Korea-linked hackers stole $1.34 billion across 47 incidents in 2024, then at least $2.02 billion in 2025, which was 76% of all service compromises that year. (chainalysis.com 1) (chainalysis.com 2) Traditional finance has had a shared cyber watchtower for years through the Financial Services Information Sharing and Analysis Center, a nonprofit network known as Financial Services Information Sharing and Analysis Center. The group says it serves roughly 5,000 member firms representing about $100 trillion in assets across 75 countries. (fsisac.com 1) (fsisac.com 2) Crypto firms usually had to defend themselves with a patchwork of private security vendors, public blockchain data, and posts on X or Telegram after the damage was already visible. Treasury is now treating at least part of the digital asset industry more like core financial plumbing than an outsider experiment. (coindesk.com) (nextgov.com) The firms that benefit most are the ones that move customer money every hour: custodians holding private keys, exchanges matching trades, market makers posting bids, and bridges moving tokens between blockchains. A warning that arrives even 30 minutes earlier can be enough time to freeze withdrawals, rotate credentials, or block a known malicious address. (coindesk.com) (nextgov.com) The word “eligible” matters here. Treasury did not open the door to every token project on the internet; it said eligible U.S. firms and industry organizations can participate, which suggests some screening around who gets sensitive warnings and how they handle them. (nextgov.com) (finance.yahoo.com) The bigger shift is political as much as technical. When Treasury shares the same threat feed with banks and crypto companies, it is quietly saying both can be targets in the same financial war. (nextgov.com)
