Hong Kong SFC Gives Crypto Platforms 1 Year to Ditch SMS OTPs
The Hong Kong SFC is forcing licensed exchanges to replace one-time passwords with cryptographic 2FA, and the liability shift is the part exchanges are reading closely.
Every Zipp story tagged #SFC, newest first.
The Hong Kong SFC is forcing licensed exchanges to replace one-time passwords with cryptographic 2FA, and the liability shift is the part exchanges are reading closely.
The 12-month deadline lands as spoofing attacks climb at Hong Kong-licensed platforms; the move redefines the authentication baseline every retail-facing venue must meet.
The framework mirrors securities oversight under the "same business, same risks, same rules" doctrine — completing the final leg of Hong Kong's digital asset regime before a 2026 legislative push.