Bitcoiner loses $91M in social engineering attack: ZachXBT

A Bitcoiner lost $91 million in a single transaction to a social engineering attack on Tuesday, with funds then sent to a privacy-focused Bitcoin wallet, according to blockchain investigator ZachXBT.

The victim was deceived by impostors posing as crypto exchange and hardware wallet support, losing 783 BitcoinBTC$112,644BitcoinChange (24h)1.54%Market Cap$2.24TVolume (24h)$32.47BView Morein a single transaction, ZachXBTsaidin an X post on Thursday.

Blockchain datashowsthe theft occurred on Tuesday at 11:06 am UTC, and the exploiter started laundering the stolen funds a day later through the Bitcoin privacy-focused Wasabi Wallet to conceal the trail of the stolen funds, ZachXBT said.

Social engineering attacks involve attackers tricking people into revealing sensitive information, such as their private keys or passwords, allowing attackers to steal the funds. These exploits have been rampant in crypto, targeting everyone from sophisticated crypto investors to the elderly.

Askedhow one can avoid being socially engineered, ZachXBT said to assume every call or email received is a “scam by default.”

ZachXBT rules out North Korea hackers

While ZachXBT didn’t name any suspects, he ruled out the notorious North Korean state-backed Lazarus Group as a potential culprit.

Advertisement

TradFi giant MultiBank Group launches buyback and burn program – Learn more about $MBG token.

The attacker received the funds at a cleanBitcoin wallet address— ‘bc1qyxyk’ — before using Wasabi Wallet’s privacy features to try to conceal them.

ZachXBT added that, coincidentally, the attack occurred exactly one year after the$243 million Genesis creditor theft.

Scammers impersonating hardware crypto wallet providers

Scammers have frequently impersonated crypto hardware wallet providers such as Ledger and Trezor using sophisticated methods.

In late April, scammers impersonating Ledgersent out lettersposing as the company, asking users for secret recovery phrases to crypto wallets in an attempt to take control of the device.

They claimed a “critical security update” needed to be performed on their devices and that failure to comply may “result in restricted access to your wallet and funds.”

Related:Small setups, big wins: Is solo Bitcoin mining making a comeback?

In the same month, an elderly US citizenlost over $330 millionworth of Bitcoin to a social engineering attack, sending shockwaves through the industry.

Crypto theft is still a multibillion-dollar industry

More than$2.1 billion was stolenfrom crypto-related attacks across the first five months of 2025, with the bulk of losses coming from wallet compromises and phishing attacks, blockchain security firm CertiK said in June.

The largest incident by far was the$1.4 billion exploitof crypto exchange Bybit in February, highlighting that even large, extensively audited crypto platforms remain at risk.

Magazine:Bitcoin’s long-term security budget problem: Impending crisis or FUD?

Explore more articles like this

Subscribe to the Markets Outlook newsletter

Get critical insights to spot investment opportunities, mitigate risks, and refine your trading strategies. Delivered every Monday

By subscribing, you agree to ourTerms of Services and Privacy Policy