Sponsored by
|
THE KILLCHAIN // No. 051 // BLOCK 25,104,154 // 05.16.2026
The KillChain
Criminals build the trap. Institutions hold the key. We name both.
THREATS · FLOWS · POSITIONS
|
| ◆ A SIGNAL FROM AN OPERATOR WE TRUST ◆ |
In a World of AI Agents: Intent > Identity
AI-powered bots aren’t just logging in anymore. They’re mimicking real users, slipping past identity checks, and scaling attacks faster than ever.
Thousands of companies worldwide trust hCaptcha to protect their online services from automated threats while preserving user privacy.
Now is the time to take control of your security.
| ◆ |
Self-Custody Has a Body Count
Code is audited. Governance is audited. The holder is the unpatched vulnerability. Wrench attacks rose 169% in 2025 and are running 41% hotter in 2026. The vector is the man, not the wallet.
On March 5, 2026, a UK indie game developer named Alex Amsel posted a four-line tweet announcing he had been physically attacked and stripped of approximately $24 million in stablecoins. He named weapons, kidnapping threats, and rape threats. Within hours, blockchain security firms labeled the on-chain drain an address poisoning incident. Within 24 hours, Amsel corrected the record. There was no address poisoning. There was a man with a weapon, and the chain only showed what came after the wrench did its work.
For a decade, this industry built a security culture around code. Audit budgets. Formal verification. Multisig schemes. Hardware wallets stored offline. Every one of those defenses assumes the threat is on a wire. None of them stop a stranger at the door, a knife at the throat, a finger held over a sink. The attacker no longer needs a vulnerability in the contract. The attacker needs your home address. The data set required to put that address on a clipboard is increasingly available for purchase. The seam has moved.
| GM, WELCOME BACK TO THE KILLCHAIN. |
The Story
The shift is documented. According to Jameson Lopp, chief security officer at Casa, who has maintained the most comprehensive open database of physical attacks against crypto holders for over a decade, reported wrench attacks rose 169% in 2025. CertiK has logged 34 verified attacks in the first four months of 2026, a 41% increase over the same period last year, with cumulative losses crossing $100 million. France has absorbed the largest share. 82% of CertiK's 2026 cases occurred in Europe. French prosecutors have charged 88 suspects across 12 active investigations, more than 10 of them minors, in incidents ranging from the January 2025 mutilation of Ledger co-founder David Balland to the February 2026 abduction of a magistrate and her mother for crypto ransom. On January 24, 2026, Chinese entrepreneur Yong Wang was found buried vertically in a shallow pit in the Arnavutköy district of Istanbul, hands and feet bound, mouth sealed. Investigators determined the attackers extracted his wallet access before they killed him. That is the first verified crypto-related homicide of 2026. There will be others.
The Sillytuna case shows the operational playbook in full. The funds bridged to Hyperliquid through Arbitrum, ran through accounts on the privacy-focused DEX Wagyu operated by pseudonymous developer "PerpetualCow," and exited to Monero. Another $1 million bridged into native BTC via LiFi. PerpetualCow publicly claimed to have been asleep while the laundering ran. Approximately $20 million in DAI was consolidated into two attacker-controlled staging wallets within hours of the extraction. The attackers used the blockchain. The blockchain did not enable the attack. The attack happened in a room.
The targeting layer is where the new threat actually lives. KYC databases breach at regular intervals. Conference attendee lists circulate in private Telegram channels. NFT ownership records are public by design. Social media posts about positions, holdings, and net worth get scraped and indexed. In April, Telegram founder Pavel Durov publicly cited the case of a French tax official who allegedly sold crypto holders' personal data to criminal networks. Lopp's name for the regulatory contribution to this pipeline is precise. He calls it Kill Your Customer. Every layer of compliance the industry was forced to adopt is now also a layer of physical risk surface.
The attack pattern is industrialized. French law enforcement describes "structured criminal networks" with repeat offenders moving across cases. Vanessa Perrée, the National Prosecutor for Organized Crime at the French Ministry of Justice, confirmed in April that several of the 88 charged are linked to multiple incidents. The recruitment pipeline runs through Telegram. The execution model is small specialized crews. The laundering model is identical across cases: physical extraction of access, immediate bridge to stablecoin, fast multi-chain routing, conversion to Monero or another privacy asset, offramp through compromised OTC infrastructure. The kill chain is no longer software to fiat. It is body to fiat. The part of the chain that used to be hardest to execute, the conversion to clean money, is now the part the attackers are best at, because they inherited the laundering infrastructure built by the protocol exploiters who preceded them. The five-dollar wrench is not the future of crypto crime. It is the present.
“The vault that protects everything is also the cell that holds everyone. Decentralization removed the banker. It did not remove the door”
| ◆ |
Wallet Watch
Three addresses inside the Sillytuna kill chain, traced by PeckShield and on-chain analysts in the days after the attack. The wrench happened in a room. The chain only shows what came after.
VICTIM EXTRACTION
Source wallet for approximately $24 million in aEthUSDC extracted on March 5, 2026, under physical coercion. Funds left this address within minutes of the attackers gaining access to the keys.
The signature of a wrench attack is speed. The chain compresses the timeline between threat and transfer to seconds. There is no anomaly detection window when the holder is the one signing.
|
DRAIN DESTINATION
The attacker-controlled wallet that received the full 23,596,293 aEthUSDC drained from Sillytuna. Address disclosed by Sillytuna himself in his public X post on March 4. On-chain check this morning confirms the wallet still holds approximately 135,929 aEthUSDC as residue, plus a small DAI balance and a long tail of address-poisoning spam tokens deposited by other actors after this address became public. The bulk of the stolen funds left this wallet within hours of arrival.
The attacker did not bother cleaning the destination wallet. The dust is still there. This is the operational signature of a crew that does not expect to be caught, because the laundering chain that follows this wallet is the part they have actually solved.
|
MONERO EXIT
No single canonical address for this leg of the laundering. The Wagyu exit is a cluster of DEX accounts on the platform, not a fixed wallet, which is one reason this stage of the kill chain is so difficult to interdict. Approximately $2.5 million was bridged through Hyperliquid via Arbitrum and routed through Wagyu accounts for Monero conversion during the live laundering window. The developer publicly claimed to have been asleep. An additional $1 million was bridged to native BTC through LiFi.
This is where the chain goes black. Monero by design does not record amounts or destinations. The trail ends at this point regardless of who is watching, and the operator's claimed unconsciousness is now part of the playbook.
|
| ◆ |
Chain Reaction
How a wrench attack actually works, in 5 stages.
| 01 | Target Identification. The attacker does not pick a wallet. The attacker picks a person. Targeting is fed by KYC database leaks, conference attendee lists circulated in private Telegram channels, NFT ownership records, doxing of pseudonymous traders, and the holder's own public posts about positions and wins. The on-chain wealth is the qualifier. The off-chain identity is the target. Jameson Lopp's term for the regulatory contribution to this pipeline is Kill Your Customer. |
| 02 | Surveillance and pattern of life mapping. Once a target is identified, observation runs for days or weeks. Daily routine. Home address. Family composition. Travel patterns. Whether the target lives alone. Whether there is any private security. The Sillytuna attackers knew enough to confront him in person. The Balland attackers knew enough to grab his partner alongside him. The Yong Wang attackers knew enough to track him from his arrival in Istanbul. This is open-source intelligence work, executed cheaply, often by crews recruited through Telegram for a one-time payment. |
| 03 | The contact. Contact is the moment of physical access. Home invasions account for roughly 25% of documented attacks. Kidnappings account for another 23%. Other variants include ambushes during travel, fake police impersonations (Le Chesnay, March 10, 2026), and proxy targeting of family members (Nancy Guthrie in the United States, January 2026; the Versailles couple in March; the May 2025 Paris kidnapping of a Malta-based crypto entrepreneur's father). The constant is loss of physical freedom and the credible presence of violence. |
| 04 | The coercion. The threat escalates until the wallet opens. Documented coercion includes severed fingers (Balland in January 2025, the Malta entrepreneur's father in May 2025), prolonged confinement and torture (the 28-year-old Italian crypto entrepreneur held more than two weeks in a Manhattan townhouse by John Woeltz and William Duplessie), threats of mutilation against family members (the French magistrate case in February 2026), and execution (Yong Wang, January 24, 2026). The five-dollar wrench is a metaphor. The actual tool varies. The output is the same. |
| 05 | The laundering. The chain comes online only once the keys do. Funds move within minutes of extraction, bridging into a stablecoin, fanning across multiple chains, converting through DEX infrastructure to Monero or another privacy asset, exiting through compromised OTC desks or pseudonymous developers willing to look the other way. Roughly two-thirds of attacks succeed in extracting funds. The laundering is the part the attackers have refined to a science, because they inherited the offramp infrastructure that protocol exploiters spent five years building. The rest of the operation is labor. |
|
◆ THE LEDGER NOTE
There is a recurring fantasy in crypto that decentralization solves enforcement. That because the chain is censorship-resistant, the people who use it for crime are unreachable. The Drift and KelpDAO drains were marketed as proof of this fantasy. North Korea took $575 million. North Korea is unreachable. Therefore the chain wins. Every chain ends at a desk. The strongest cage a man ever sits in is the one he built with his own beliefs and handed the keys to a friend. But the laundromat sits in Beijing. The launderers go to the same office every day. They have phones, families, bank accounts at named institutions, and middlemen who flip in exchange for charge reductions. Decentralization stops at the bridge. After that you are in the building, and the FBI has been mapping the building for four years. May 1 was the demonstration. |
|
|||||||||||||||
The Position Desk
The Fraudfather's read on the three positions worth your attention this week. A note on the lineup. SOL rotates out. The Position Desk reserves slots for assets making active demands on capital, either threatening to break or threatening to launch. SOL ran from $92 to $97 mid-week and pulled back to $89 with the broader tape on Friday, netting roughly +1% over seven days. That is range-trading inside a wider consolidation, and there is nothing on the chart or the news flow that requires an active position decision this week. The slot opens for Hyperliquid (HYPE), which is named in today’s lead story, sat through Friday's macro selloff with a 0.1% scratch on a -3% market day, and is the asset where CME and ICE just escalated a regulatory war.
BTC tagged $78,600 intraday Friday before stabilizing at $79,046, the worst session since the early April Drift selloff. CME FedWatch repriced rate-hike-by-year-end odds from 14% to nearly 50% in seven sessions while rate cut probability collapsed to near zero. Crypto equities took the brunt: COIN −6%, MSTR −5.4%, CRCL −7.4%, MARA and HUT off 7%, BTDR down nearly 11%. The structural bid is still there. Spot BTC ETFs absorbed roughly 19,000 BTC in April, nine times the amount miners produced over the same window, and long-term holders remain net accumulators week over week. The macro thesis built on cheap money got a hard repricing in 48 hours, but the supply mechanic did not. Hold $78K to keep the structure; loss opens $72K. Reclaim $85K to invalidate the macro pivot.
|
ETH was the worst major this week, losing the $2,400 level cleanly and now testing $2,200. The tape does not match the structural story. On May 13, tokenized Treasuries on Ethereum crossed $15 billion in assets, an all-time high, with BlackRock, Franklin Templeton, Fidelity, and WisdomTree leading the institutional buildout. In parallel, Bitmine Immersion Tech ($BMNR) now holds 5.21 million ETH worth approximately $13.4 billion, representing 4.3% of all circulating supply with a stated target of 5% by year-end. That is the MicroStrategy playbook executed against Ethereum, quietly, while the price gets sold. The supply lock is real. The flow is taking it off the market. The chart has not noticed yet. Defend $2,200 to hold the structure; loss opens $2,000. Reclaim $2,400 with volume to confirm a higher low.
|
Hyperliquid is the largest decentralized perpetuals exchange and the first major asset where regulators and criminals just converged on the same week. On Friday, May 15, CME and ICE jointly asked U.S. regulators to investigate the platform for manipulation, marking the first time the two largest regulated derivatives venues have weaponized regulatory access against a DEX. The same platform's order infrastructure was used by the attackers in the Sillytuna case to route approximately $2.47 million through 19 Wagyu accounts to Monero. HYPE closed Friday down 0.1% on a session where the broader market lost 3%, which is real relative strength on a $10.5 billion market cap with $742 million in daily volume. The structural thesis is strong. The regulatory overhang is binary. This is the asset to track, not yet the asset to size. Watch for a reclaim of $50 with volume to confirm, or a formal CFTC or SEC enforcement action to reset.
|
|
◆ SIGNAL WATCH
Watch for the CLARITY Act to reach a Senate floor vote in the next 30 to 60 days, and watch what is not in it. The Banking Committee advanced the bill 15-9 on Thursday, May 14, with mandatory KYC and customer identification provisions for every U.S. digital commodity exchange, broker, and dealer under the Bank Secrecy Act through FinCEN. The bill expands the data collection requirement. It does not include a corresponding data security floor for the customer records those mandates will create. Pavel Durov's April disclosure of a French tax official selling crypto holders' personal data to criminal networks is the preview of how that gap gets exploited. Jameson Lopp's open database now logs over 250 verified physical attacks since 2014, with a 169% surge in 2025 alone. Senator Kirsten Gillibrand projects the first week of August as the realistic floor vote window before midterm season closes the calendar. The question for the next 60 days is whether any amendment ties customer data security obligations to the KYC mandate, or whether the bill ships as drafted, codifying a federal data-collection requirement with no statutory protection for the data it requires to be collected.
MONITORING WINDOW: 90 DAYS
|
|
◆ THE SETTLEMENT
The lesson in six words: cryptography stops where the body starts. |
|
◆ SPREAD THE SIGNAL
The One Person Who Needs This Most Isn't In Our Crime Family.Algorithms won't find them. You will. If today's issue gave you a frame you didn't have before, forward it.
SHARE THE KILLCHAIN
THE CRIMINALS ARE ALREADY READING THIS.
YOUR FRIENDS SHOULD BE, TOO. |
Not financial advice. The KillChain is research and commentary, not personalized investment guidance. You're in command of every position. Read accordingly.
Stay Sharp, Stay Solvent