Two Young Men Arrested for $230 Million Bitcoin Theft in Sophisticated Scam

U.S. federal agents have arrested two young men, Malone Lam (20) and Jeandiel Serrano (21), for orchestrating one of the largest Bitcoin thefts in recent history. The duo is accused of stealing over 4,100 Bitcoin, valued at $230 million, from a Washington D.C. resident who was reportedly a creditor of the bankrupt cryptocurrency lender, Genesis. The indictment, filed under case number 24-CR-417, outlines the technical methods used in the theft, with assistance from blockchain investigator ZachXBT.

How the Theft Unfolded

Lam and Serrano carried out their attack by posing as representatives from Google and Gemini, utilizing spoofed phone numbers to convince the victim that their accounts had been compromised. Through a series of sophisticated social engineering techniques, including impersonating support staff, the scammers persuaded the victim to reset two-factor authentication (2FA) settings and enabled screen-sharing software. This allowed them to gain access to the victim's private Bitcoin keys and initiate large transfers from the victim’s wallet.

The stolen Bitcoin was then laundered through a network of cryptocurrency exchanges, with portions converted into other cryptocurrencies like Monero, which is known for its privacy features.

ZachXBT’s Role in the Investigation

Blockchain sleuth ZachXBT played a critical role in tracing the stolen funds. In a series of tweets, he detailed how he helped track the laundering process and provided key insights into the movements of the stolen Bitcoin. According to ZachXBT, both suspects made several errors while laundering the funds, including linking dirty funds to purchases of designer clothes, exposing their activities on-chain​.

ZachXBT also shared that with the assistance of crypto forensic investigators from zeroShadow and Binance's security team, over $9 million of the stolen funds have been frozen, and more than $500,000 has already been returned to the victim. He revealed that the suspects, known by their aliases "Box" and "Wiz," were arrested after law enforcement identified large transfers made during the final stages of the laundering process​

A Lifestyle of Luxury

Following the theft, Lam and Serrano indulged in a lavish lifestyle, spending their stolen fortune on luxury cars, high-end watches, and designer clothes. They rented luxurious homes in Miami and Los Angeles, all while avoiding the authorities. However, the FBI, with the help of blockchain investigators, was able to trace their steps and bring them to justice.

Ongoing Developments

ZachXBT continues to share updates on the case via his social media, indicating that the investigation is far from over. As legal proceedings move forward, there are expectations that additional funds may be recovered, and more individuals involved in the operation could be arrested.