Two major regulatory and enforcement developments on opposite sides of the globe underscore the rapidly evolving landscape for cryptocurrency oversight. In the United Kingdom, crypto firms are now required to collect and report detailed transaction data from every customer starting January 2026, while Australian authorities have seized nearly 25 Bitcoin alongside a waterfront mansion and a luxury vehicle tied to an alleged crypto exchange heist dating back to 2013.
TL;DR
- UK crypto companies must report every trade and transfer beginning January 2026 under new tax transparency rules
- Firms must collect full names, addresses, and tax identification numbers for all transactions
- Non-compliance penalties reach up to £300 per user
- Australian Federal Police seized 25 BTC, a mansion, and a Mercedes-Benz worth a combined $2.88 million
- The seizure is linked to Shane Stephen Duffy, previously convicted of hacking a US gaming company
UK Mandates Comprehensive Crypto Transaction Reporting
The United Kingdom’s Revenue and Customs Department has issued a directive requiring all cryptocurrency companies operating within its jurisdiction to collect and report data from every trade and transfer beginning in January 2026. The new rules represent a significant escalation in the government’s approach to crypto tax enforcement and mark one of the most comprehensive reporting frameworks for digital assets in any major economy.
Under the new requirements, crypto firms must collect each user’s full name, home address, and tax identification number alongside transaction details including the specific cryptocurrency involved, the amount transferred, and the date and time of each transaction. The mandate applies to every transaction — not just those exceeding a certain threshold — creating a granular reporting obligation that mirrors traditional financial institution requirements.
Companies that fail to comply face penalties of up to £300 per user, a figure that could quickly escalate into substantial fines for platforms with large customer bases. The Revenue and Customs Department has stated it will provide detailed guidance on compliance procedures, though industry participants have expressed concerns about the technical and operational burden of implementing such extensive data collection systems.
The new framework is part of the UK’s integration of the Organization for Economic Co-operation and Development’s Crypto Asset Reporting Framework, an international standard designed to improve transparency and combat tax evasion in the digital asset space. The UK’s approach stands in contrast to the European Union’s Markets in Crypto-Assets Regulation, which takes a broader regulatory stance encompassing consumer protection and market integrity alongside transparency requirements.
Australia Seizes Bitcoin Tied to 2013 Exchange Hack
Australian authorities have seized nearly 25 Bitcoin, a waterfront mansion, and a Mercedes-Benz vehicle with a combined value of approximately $2.88 million (4.5 million Australian dollars) in connection with an alleged cryptocurrency exchange hack that dates back more than a decade. The Australian Federal Police-led Criminal Assets Confiscation Taskforce announced the seizures on May 18, 2025, following an investigation triggered by intelligence sharing from Luxembourg law enforcement agencies.
The investigation centers on Shane Stephen Duffy, a Queensland individual who was previously convicted of fraud and computer hacking in 2016 for selling data belonging to players of the popular game League of Legends. Luxembourg authorities flagged suspicious Bitcoin transactions linked to Duffy, which subsequently led Australian investigators to connect him to the theft of 950 Bitcoin from a French cryptocurrency exchange in 2013.
Notably, no criminal charges have been filed specifically regarding the Bitcoin theft itself. Prosecutors determined that Duffy had obtained a copy of the stolen data online and sold it for profit rather than personally executing the exchange hack. Duffy was also previously accused of hacking the X (formerly Twitter) account of Riot Games President Marc Merrill to publicize his data-selling operation.
AFP Commander Jason Kennedy emphasized the broader implications of the seizure, stating that profits derived from criminal activities are often used to fund further criminal acts, which is why the AFP works closely with its partners to target the proceeds of crime and ensure they are reinvested in the community.
Divergent Regulatory Paths Emerge Globally
The simultaneous developments in the UK and Australia highlight the increasingly divergent paths that major economies are taking toward cryptocurrency regulation. The UK’s approach focuses heavily on tax transparency and data collection, leveraging international frameworks to create a reporting infrastructure that treats crypto transactions with the same level of scrutiny as traditional banking activity.
Australia’s enforcement action, meanwhile, demonstrates the growing capability of law enforcement agencies to trace and seize cryptocurrency assets across international borders — even in cases that stretch back more than a decade. The collaborative effort between Luxembourg and Australian authorities underscores the effectiveness of international intelligence sharing in combating crypto-related financial crime.
For the broader cryptocurrency market, these developments carry significant implications. The UK’s reporting requirements will increase compliance costs for crypto businesses operating in one of the world’s largest financial centers, potentially driving smaller firms out of the market or forcing consolidation. At the same time, the Australian seizure demonstrates that crypto’s perceived anonymity continues to erode as blockchain analytics and cross-border cooperation become more sophisticated.
Industry observers note that while regulatory clarity generally benefits legitimate market participants in the long run, the pace and scope of new requirements are creating significant short-term adjustment challenges for crypto firms that must overhaul their data infrastructure to meet compliance deadlines.
Why This Matters
These twin developments from the UK and Australia represent the accelerating mainstreaming of cryptocurrency regulation and enforcement. The UK’s comprehensive reporting mandate signals that governments no longer view crypto as a niche asset class that can operate outside traditional financial oversight — it is being brought fully into the tax and regulatory perimeter. Meanwhile, Australia’s successful seizure of assets tied to a 12-year-old hack demonstrates that the window of perceived impunity for crypto-related crime is rapidly closing. Together, these actions suggest that 2025 and 2026 will be pivotal years for the industry’s relationship with regulators worldwide, with compliance becoming not just a legal obligation but a competitive differentiator.
Disclaimer: This article is for informational purposes only and does not constitute financial or legal advice. Cryptocurrency regulations vary by jurisdiction. Always consult with qualified professionals regarding compliance obligations.
reporting every single transaction with no threshold is insane. they really want to kill retail crypto in the UK
GBP300 per user penalty for non-compliance is basically nothing for big exchanges but will crush small builders who cant afford compliance teams
^ thats the point. they dont want small builders, they want compliant institutional players only
25 BTC seized from a 2013 exchange hack plus a waterfront mansion. imagine holding that long and still getting caught
Shane Duffy hacked a US gaming company and then bought a mansion with bitcoin. not exactly the cypherpunk dream lol