Key Takeaways
- Three attackers stole $243 million using social engineering.
- ZachXBT’s investigation led to arrests and frozen assets.
- 4064 BTC was stolen and dispersed across 15 exchanges.
Three cybercriminals, using advanced social engineering techniques, stole $243 million from a single Genesis creditor in August 2024. The attackers, known as Greavys (Malone Iam), Wiz (Veer Chetal), and Box (Jeandiel Serrano), manipulated the victim through a series of deceptions, according to blockchain investigator ZachXBT.
The attack began on Aug. 19, with the group posing as Google Support, gaining access to the victim’s personal accounts. Posing as Gemini representatives, they convinced the victim to reset two-factor authentication, leading to the transfer of assets. The criminals further exploited the situation using AnyDesk, extracting private keys from the victim’s Bitcoin Core wallet. This resulted in a theft of 4064 BTC, tracked via blockchain transaction hash 4b277b…fbe9090.
The stolen funds, totaling $243 million, were divided among the group, laundered through over 15 exchanges, and quickly converted into Bitcoin, Litecoin, Ethereum, and Monero to obscure the trail. A key mistake by Wiz (Veer Chetal), who accidentally revealed his full name during the attack, helped investigators identify him.
ZachXBT’s efforts have led to multiple arrests and the freezing of millions in stolen assets. This incident underscores the increasing sophistication of cybercriminals and the critical need for enhanced security in the Bitcoin space.