No reviews yet. Be the first to share your experience!
Latest Posts
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
BREAKING: Circle froze the USDC balance of 16 hot wallets for various businesses late yesterday.
I spoke with one of the affected businesses directly and they stated it was due to an ongoing US civil case whose details are not yet disclosed.
I reviewed the onchain activity and the exchanges, casinos, forex businesses do not appear to be related at all to each other.
Why was the request not properly reviewed by Circle?
For those unfamiliar a crypto business has a hot wallet to process the bulk of transactions for its users.
An analyst with basic tools could have identified within minutes that these were operational business wallets from the thousands of transactions they process.
Now their business operations have been negatively impacted by Circle, Lawyer, Forensics firm, & Judge
Rain[.]gg
0x87d18ee84e8f4f5709cbf3500179a4c601da12ce
Clash[.]gg
0x9e2a58d257963a276452fff1be94c0eb7e2775cc
Whale[.]io
0x4bd282c083d9ec35aa6c3e0f366d79f12f3a1630
Goated[.]com
0x61f08d119974a3d9915f06765d83fe1aa677e543
500 Casino
0x68416debc20d13e5ef694cdcac9506f4c1a20184
Finrax
0x258494a21d9ea90fcbcb9e22bd57c6899de0d995
Herofx
0x2704ba2d5d3544e6292d9aca536b6bbbfebd80e9
Coinsbuy
0x5f9acf4e85aa7283e0c16dd94cbc942f9d625151
0x22face80f43b857141e9752c3bae8c3309fcdd0f
Unknown service hot wallets
0xfb3a175ce3cb33d9f464a3c5ea0b834dae2aaaf6
0xb25ea1d493b49a1ded42ac5b1208cc618f9a9b80
0x090aac31fca0d19f91e30e02ec8217098a3a4446
0xbfca3e2097baa1eb354e9d915180707dde1027f2
0x3b848ac300b9e0d260e812b628b87a03d278db95
0x00e84a0b678cd4584a9a377d334c810025970873
0xf9e83020cccbd1a95f0f257a5a9e3d58149762f8
Earlier today Serpent (Ethos Network founder) publicly shared a dataset of 70K InfoFi users from Kaito, Wallchain, Cookie, Galxe, Xeet, & Ethos. I worked with Shob to compare the InfoFi users to their X account location and here were the results:
95,900
1,587
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
On January 10, 2026 at around 11 pm UTC a victim lost $282M+ worth of LTC & BTC due to a hardware wallet social engineering scam.
The attacker began converting the stolen LTC & BTC to Monero via multiple instant exchanges causing the XMR price to sharply increase.
BTC was also bridged to Ethereum, Ripple, & Litecoin via Thorchain.
Theft addresses (2.05M LTC, 1459 BTC):
bc1qluxw46r55wf3dnk9c652vrt4duadm3hpuktf86
bc1qpsmh26ja0fzzf286zulmt9eywujc2pggj40wzm
ltc1qly43c2prj4c2e85dcspzpjd36jnapnenldnr70
119,000
1,626
0
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
π· Photo
Community alert: Ledger had another data breach via payment processor Global-e leaking the personal data of customers (name & contact information).
Earlier today customers received the email below.
98,800
1,091
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
π· Photo
If you are a GLM holder please consider https://octant.app/project/10/0xE74bbe83747ad12F24ecc5E9e4fAF7CFd7D487A2 to me for Octant Epoch 10.
Voting will be open until January 20, 2025.
87,600
782
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
π· Photo
It appears hundreds of wallets are currently being drained on various EVM chains for small amounts (<$2k total per victim) with a root cause not yet unidentified.
So far ~$107K has been drained from them with the theft total still increasing.
Suspicious address
https://debank.com/profile/0xAc2e5153170278e24667a580baEa056ad8Bf9bFB
100,000
847
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
Community alert: A number of Trust Wallet users have reported that funds were drained from wallet addresses within the past couple of hours.
While the exact root cause has not been determined coincidentally the Trust Wallet Chrome extension pushed a new update yesterday.
Send me a https://x.com/zachxbt if you were affected and I will update the list of theft addresses below as I verify more.
Theft addresses
EVM
0x3b09A3c9aDD7D0262e6E9724D7e823Cd767a0c74
0x463452C356322D463B84891eBDa33DAED274cB40
0xa42297ff42a3b65091967945131cd1db962afae4
0xe072358070506a4DDA5521B19260011A490a5aaA
0xe072358070506a4DDA5521B19260011A490a5aaA
0xc22b8126ca21616424a22bf012fd1b7cf48f02b1
0x463452c356322d463b84891ebda33daed274cb40
0x109252d00b2fa8c79a74caa96d9194eef6c99581
0x30cfa51ffb82727515708ce7dd8c69d121648445
0x4735fbecf1db342282ad5baef585ee301b1bce25
0xf2dd8eb79625109e2dd87c4243708e1485a85655
Bitcoin
bc1qjj7mj50s2e38m4nn7pt2j0ffddxmuxh2g8tyd8
bc1ql9r9a4uxmsdwkenjwx7t5clslsf62gxt8ru7e8
bc1q4g8u7kctk6f2x3f6nh43x76qm4fd0xyv3jugdy
bc1qw7s35umfzgcc7nmjdj9wsyuy9z3g6kqjr0vc7w
bc1qgccgl9d0wzxxnvklj4j55wqeqczgkn6qfcgjdg
bc1q3ykewj0xu0wrwxd2dy4g47yp75gxxm565kaw6m
Solana
HoQ6z1wW3LUnEGHnseC3ND3PoC6i6RghMCphHhK42FEH
173,000
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
Community alert: A number of Trust Wallet users have reported that funds were drained from wallet addresses within the past couple of hours. While the exact root cause has not been determined coincidentally the Trust Wallet Chrome extension pushed a new updateβ¦
119,000
929
0
Investigations by ZachXBT
Apr 24, 2026, 01:06 PM
π· Photo
A victim had suspicious outflows of ~$1.1M from five wallets on EVM chains 23 hours ago in a private key compromise.
The attacker swapped out of all assets for ETH immediately and deposited 330 ETH to Tornado.
Theft address
https://blockscan.com/address/0x4f8affe6cd269d1f8352d0542432de6975c3912d
