In a dramatic crypto heist, three hackers executed a scheme that defrauded a single victim of $243 million on August 19, 2024.
The attackers, known by their aliases Greavys, Wiz, and Box, used a combination of social engineering and technical expertise to execute the fraud.
The operation began with the hackers impersonating Google Support via a deceptive phone call, which helped them gain the victim’s trust. They then pretended to be Gemini Support to convince the victim their account was compromised. This manipulation led the victim to change their two-factor authentication settings and transfer funds to the hackers’ wallet.
The criminals continued their deceit by persuading the victim to install AnyDesk, a remote desktop application. This allowed them to obtain the victim’s private keys and access the $243 million in digital assets.
To obscure their tracks, the hackers moved the funds through over 15 exchanges, converting them among Bitcoin, Litecoin, Ethereum, and Monero. However, during an investigation, one hacker, Wiz, inadvertently revealed his real name, aiding investigators.
Greavys used the stolen money to indulge in a lavish lifestyle, buying luxury cars and spending extravagantly on nightlife in LA and Miami, while Box’s consistent online presence with identifiable photos made tracking easier.
The collaborative efforts of blockchain experts and security teams led to the seizure of $9 million of the stolen funds and the arrest of Greavys and Box. Investigations are ongoing, with authorities expecting further recoveries and arrests.
The U.S. Department of Justice has sentenced Dwayne Golden, 57, of Pennsylvania to 97 months in prison for orchestrating a fraudulent crypto investment scheme that stole over $40 million from investors.
The first half of 2025 has become the most damaging six-month period in crypto history, with over $2.1 billion stolen across 75+ separate incidents, according to new data.
A new breed of cyber-attack is sweeping through crypto media, exploiting site pop-ups and wallet-connect prompts instead of smart-contract bugs.
CoinMarketCap, one of the most widely used crypto data tracking platforms, is reportedly facing a front-end security breach, with multiple users encountering a suspicious prompt to verify their wallets.