In a dramatic crypto heist, three hackers executed a scheme that defrauded a single victim of $243 million on August 19, 2024.
The attackers, known by their aliases Greavys, Wiz, and Box, used a combination of social engineering and technical expertise to execute the fraud.
The operation began with the hackers impersonating Google Support via a deceptive phone call, which helped them gain the victim’s trust. They then pretended to be Gemini Support to convince the victim their account was compromised. This manipulation led the victim to change their two-factor authentication settings and transfer funds to the hackers’ wallet.
The criminals continued their deceit by persuading the victim to install AnyDesk, a remote desktop application. This allowed them to obtain the victim’s private keys and access the $243 million in digital assets.
To obscure their tracks, the hackers moved the funds through over 15 exchanges, converting them among Bitcoin, Litecoin, Ethereum, and Monero. However, during an investigation, one hacker, Wiz, inadvertently revealed his real name, aiding investigators.
Greavys used the stolen money to indulge in a lavish lifestyle, buying luxury cars and spending extravagantly on nightlife in LA and Miami, while Box’s consistent online presence with identifiable photos made tracking easier.
The collaborative efforts of blockchain experts and security teams led to the seizure of $9 million of the stolen funds and the arrest of Greavys and Box. Investigations are ongoing, with authorities expecting further recoveries and arrests.
A recent theft involving Coinbase Commerce has been uncovered by crypto investigator ZachXBT, revealing that over $15.9 million worth of USDC was stolen from a vendor.
Roni Cohen-Pavon, formerly the chief revenue officer at Celsius, will not face sentencing this week as initially scheduled.
The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) has imposed sanctions on several individuals and entities tied to a Russian money laundering operation that utilized Tether (USDT) and other cryptocurrencies for illicit transactions.
A prominent cryptocurrency platform has suffered a major cyberattack, leading to a $50 million theft on October 16, 2024.