Hackers Greavys (Malone Iam), Wiz (Veer Chetal), and Box (Jeandiel Serrano) pulled off a $243 million crypto theft last month. The single victim, a Genesis creditor, was taken for everything in a detailed social engineering attack.
This incident was carefully planned, and the execution was flawless (no offense to the victim).
ZachXBT, an on-chain investigator, has been on the case, connecting the dots and working with law enforcement to freeze millions and make multiple arrests.
The attack kicked off on August 19. Greavys, Wiz, and Box used spoofed numbers and fake support calls to pose as Google and Gemini representatives.
They manipulated the victim into resetting their two-factor authentication (2FA) and transferring funds from their Gemini account to a compromised wallet.
The hackers also got access to the victim’s private Bitcoin keys using AnyDesk, a remote desktop software, during a screen-sharing session.
Once the keys were exposed, they became unstoppable.
The first major Bitcoin transaction occurred at 1:48 am GMT, with 59.34 BTC (Gemini transaction hash: e747b963a463334c164b0a8fff844f73693272bb2b331adbe2147d70ec196360).
Not long after, another 14.88 BTC was moved at 2:30 am (hash: 7c7ebed785f0b4d4335d559b14b8215862fbe29db329e3ee0f2a7e64a16ce9e3).
But oh, that was just the beginning.
This is a developing story