Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Tay 💖 Profile picture
@tayvano_
Mar 31, 2023 37 tweets 20 min read Read on X
Scrolly
The selling of this bitcoin is, by far, the least interesting part of the saga.

The govt's seizure, the dude who had his bitcoin seized, and why it even got seized in the first place is full of so many amazing, hysterical, enraging gems.

Heads up...not a short story. Buckle up.
To set the stage, dude w/ the bitcoin is a super OG bitcoiner living in Gainesville, Georgia.

In Sept 2012 he executed a very basic "hack" on the Silk Road and withdrew the coins.

Not a bad dude. Not a huge hack either. Way less than a mil at the time.

justice.gov/usao-sdny/pr/u…
After collecting up all these coins (~60k BTC) this dude, from at least 2012 thru at least 2021, fucking *lived* life.
Dude lived life like a only an OG bitcoiner from Georgia ever could.
Like, seriously, #bitcoinsquadgoals
what could ever be better than getting hammered and trolling roger and jihan with your stash of 60k btc + btc-fork coins?? 😂
lolllllllllllllll yeah, well, he did that too. 🤣
Keep in mind, this entire time, dude has a fucking stash of BTC thats growing from ~$150k to ~$3.36 billion dollars!!!!!

😳

where do you even keep ~$3.36 billion dollars????!!?
Turns out, he had a "state-of-the-art computer setup" protecting his coins.

Well, he had a "state-of-the-art computer setup" at least.
He kept his $3+ billy bitcoin in an underground floor safe.

And on a raspberry pi under blankets in a popcorn tin in his bathroom closet.
Oh, and in the kitchen drawer.

And on 25 Casascius coins.

😳 🤣

justice.gov/usao-sdny/pres…
T H R E E B I L L I O N D O L L A R S ! ! !
bro

justice.gov/usao-sdny/pres…
Now obviously youre wondering, "damn. how'd he get caught?"

And, well, considering he signed a message using his 60k BTC key and posted it to bitcointalk... 🙈

A better question though is *why* did he get caught? Like, who cares that someone hacked Silk Road back in 2012????
Turns out the govt cares. They *really* care. But not about lil Jimmy. Nope.

Govt cares bc it would look *really* bad if corrupt federal agents who were investigating Silk Road in 2013 still had a $3b stash of BTC that the (less corrupt) investigation in 2015 missed. 😬
I know—that last tweet was a doozy. Let's back up. You need some more context so you can appreciate what's happening here.

If we rewind even further back to 2011, Adrian Chen of Gawker infamy discovered the Silk Road and wrote about it.

gawker.com/the-undergroun…
In response, Sens. Charles Schumer of New York and Joe Manchin of West Virginia stood up on their high horses and demanded, loudly, that the DOJ and DEA 'shut down this shit down immediately!!!!!'

archive.sltrib.com/article.php?id…
And in response to that every possible agency jumped up and started trying to take down Silk Road.

Like, literally, all of them.

FBI, USSS, ICE, HSI, DEA, IRS-CI, USPS and random ass local agencies / individual agents, too.

h/t @lamoustache antilop.cc/sr/#timeline
Naturally, due to the huge number of federal cooks in the kitchen + the newness of Bitcoin + the fact being a federal law enforcement agent does preclude you from being a lying, stealing, scheming, greedy bastard...it didnt go super well.

h/t @a_greenberg amazon.com/Tracers-Dark-G…
Notably, they didn't end up finding the 20-something year old kid living in SF until late-2013.

2+ full years later.

He was in SF.

😐



And remember how I told you earlier that James hacked the Silk Road in late-2012 via a super basic race condition?
Silk Road was also hacked in *early*-2012 by a still unidentified " Individual X " using the exact same method. (That ~$1 billion worth of BTC was similarly seized in November 2020.)

news.bitcoin.com/a-look-at-indi…
There were a ton of incidents like this. Silk Road was not a state-of-the-art platform. It was basically duct-taped together.

How tf did it take so long for the govt to actually track down the servers and identity of Ross and other admins??????

antilop.cc/sr/#timeline
Oh right, they were too busy being corrupt as all fuck.

e.g. In Jan 2013 the dedicated Silk Road unit did a sting on one of the mods of SR.

Then they took over his account and......stole all the BTC they could from Silk Road users and vendors. 😬

arstechnica.com/tech-policy/20…
This isnt a conspiracy theory. These feds—Shaun Bridges and Carl Mark Force IV—were both busted after Katie Haun (then prosecutor @ NDCA) + Tigran Gambaryan (then investigator @ IRS-CI) got a tip from....Bitstamp. 🤡

arstechnica.com/tech-policy/20…

@a_greenberg amazon.com/Tracers-Dark-G…
The depth of fraud is really something else. The various filings are worth reading in full. These guys—who were not working together—were so fucking independently disgustingly dirty.

e.g. Corrupt US Secret Service Agent Bridges:
antilop.cc/sr/files/2015_…
+
s3.documentcloud.org/documents/2642…
And corrupt DEA agent Carl Force

Extortion, theft, lies, and then more thefts.

antilop.cc/sr/files/2015_…

arstechnica.com/tech-policy/20…
And even more theft, more lies, more fraud, more extortion by Corrupt DEA agent Carl Force

antilop.cc/sr/files/2015_…
+

antilop.cc/sr/files/2015_…
And Corrupt Bro #1, Bridges, *after* being arrested and pleading, RE-STOLE THE FUNDS THAT HAD TECHNICALLY (but not literally) SEIZED **TWICE** by then.

And then tried to run!!!

Cannot make this shit up. 🤣

Arrest #2:
antilop.cc/sr/files/2016_…
+
antilop.cc/sr/files/2016_…
BRO

antilop.cc/sr/files/2016_…
BRRRROOOOOOOOOO!!!!!

antilop.cc/sr/files/2016_…
Anyways.

Obvs these 2 lying, murder-plotting, bitcoin-stealing and re-stealing asswipes were both eventually thrown in prison.

Carl Force got 78 months in October 2015.
oig.justice.gov/press/2015/201…

Shaun Bridges got 71+24 months consecutive in November 2017.
justice.gov/opa/pr/former-…
And then they were released from prison. Bc they are not evil like Ross Ulbricht is. Or something. 😒

Name: CARL MARK FORCE
Register Number: 58633-037
Released On: 10/09/2020

Name: SHAUN W BRIDGES
Register Number: 20436-111
Released On: 10/19/2021

bop.gov/mobile/find_in…
Sidenote: It is truly appalling that Ross got the literal book thrown at him, will never be released, and these guys got half a slap on the wrist.

Especially considering not one word of this corrupt shitshow was allowed in Ross's trial. 😨 #freeross
And that's the story of how the govt came to be in a position to dump piles of BTC via Coinbase today.

They knew there was unaccounted for BTC that had been stolen from SR.
They knew who stole repeatedly from SR before.
And those agents were about to be released.

🤡
But more importantly, its why the small handful of folks in the govt who actually know Bitcoin—the same ones who took down the corrupt agents, Alpha Bay, BTC-E, Welcome 2 Video, etc.—went from working those cases to working random, long-forgotten-about Silk Road hacks and stuff.
....and stuff.

wired.com/story/katie-ha…
....and stuff.

🫥

consensus.coindesk.com/agenda/speaker…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Tay 💖

Tay 💖 Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @tayvano_

Tay 💖 Profile picture
Jul 8
Crypto folks (hopefully) already know that Lazarus is one of the most prevalent threat actors targeting this industry.

They rekt more people, companies, protocols than anyone else.

But it's good to know exactly how they get in. Bc another smart contract audit won't save you.
For example, one long-time fave method:
- Contact employee via social/messaging app
- Direct them to a Github for a job offer, "skills test," or to help with a bug
- Rekt individual's device
- Gain entry to company's AWS
- Rekt company (and their users)

cloud.google.com/blog/topics/th…
Image
With permission, I’m sharing a recent convo that led to $2m+ stolen so you can see how this DPRK crew (TraderTraitor) is operating today.

These convos are pretty rare to see. Thefts occur months later, so very few uncover how the initial entry was made.

cisa.gov/news-events/cy…Image
Read 14 tweets
Tay 💖 Profile picture
Jun 19
this wild af
episode 2 even wilder

Txn History Deposit 1

0x5a7732d8710af819dd16c82d38ed4385e137285c

0xce7d8feb6f4a88f4a2694beb8f92be6a1670d3a8fa243ab3416b46f4576d3fc5

0x8cd115e1d45dc80894204244a2749cb7cdb7ac7b14cf9809cac19714d3626bfc

0xa119fd1efd639fde5837566dfd843ba401825702e7694ce1591194b2b98297ae

0x0dea174d7bd9f6e978b98e6e1d0a0f1fc22d90f82f35537b1754d3f73652f1d6

0xa2bd92a528ffc2cb66f7317ff9e6ad55f094112e2937980c8b782d052d22dc76

0x886f187b7f3929032072a98160dac084d02a0ce62b556c64140d76f399d4922d

0x9d661a1d89613e2fa53a9ca63ad64db5401cde7d70f4eefb883724b0f1a57a31

0x1dbc11b50913f8633c049072428f4db0cce4d38cabe6087afc472c6668f5dc1a

0xa3a4a5878da0240cf0dbcb1b68bde88b877ed2c0c2390d000f796cda2c579af9

0xa158192d24ca8fa79c95fa52f8c3d564e8f6304bacea9c9dfca440d7da33ddf7

0xa7285a96eb95dd76ce129f063424679a6d465b7b9a284cdac528405c75ce8393

0x3dd977a7b2edbbe629a8bab9a9b3f0ccf253ea12e31c6f748ddac9e025167e67
Read 20 tweets
Tay 💖 Profile picture
Apr 10
🧵Highlights from the UN Security Council's 2023 report on DPRK

This one was a whopping 615 pages 😳

These reports are always like a birds eye view of random, raw, deep intel. They're amazing and shed light on attribution, irl banking networks, etc.

un.org/securitycounci…
re: MaybachsImage
Image
Image
re: DPRK IT Workers



justice.gov/opa/pr/justice…
reuters.com/technology/nor…Image
Image
Image
Image
Read 25 tweets
Tay 💖 Profile picture
Jan 1
Orbit Bridge Hack looking v methodical 👀

Looks like 2024 is going to be another year of handing DPRK billions of dollars on a silver platter. 🙄

embarrassing af. Image
Attacker
0x9263e7873613ddc598a701709875634819176aff

Funds Holders
0x009b60aab8e64c8f5fe449bd96fa78b1a7fffcc5
0x3a886a63c768665a9830886e608d6f9dc6b4f730
0x817bb1761b715a08a9142f99fa7d0ccf73f4c0ef
0x157a409c2bfff38209a32e55d3eac1bfc93dd664
0x5e22cb028865d6a93080d7ab42d2fe9a0e8dc085
0xd283fa3bd85887725c8982f539cc404a450f7fd9
0xf49de491e1c0d84a0e0bd2d57a841825fcf179fd
0x589257e07e11e761f31956d54b2323f63ee36b7d

Receivers
0x009b60aab8e64c8f5fe449bd96fa78b1a7fffcc5
0x3a886a63c768665a9830886e608d6f9dc6b4f730
0xa70f8917a957757f5505a5535df1591c54f65b9d
0x9ca536d01b9e78dd30de9d7457867f8898634049
0xdadfa3ccd40fc3d5a0164c6f9444f60163ccbf3b

Intermediaries
0x0c43edeb2ee69c27d689e912ab5b8e8eef128d4c
0x42839f4423985b5ef989498b0605b1dcca8f0df1
0xe03d37392255fd1dae5476b04388315cc70b78c2

Attacker Funder (from TC)
0x70462bfb204bf3ccb0560f259072f8e3a85b3512

Instaswapper Depo from Attacker
0xbad82ca05bd3d40b783d39e52abc1446f33aae12

Instaswapper Receiver on XRP
rN7EFW25YcGG6nzRY4W7TbX5tRyngW1Dj1
happy new year
Read 9 tweets
Tay 💖 Profile picture
Jul 10, 2023
When it comes to financial crime, money laundering, etc. everyone goes thru a phase of thinking that the solution is knowing the identity of the account holder.

"if only we knew who moved these assets! then we would be able to catch them and stop crime!"

N O .
Literally NO.

It doesn't work at any scale. It's never worked at any scale. It never will work at any scale.

AML laws and all the related shit don't stop crime or money laundering. And it never has.

And it's really important to note that the implementation is NOT the issue.
The laws are *designed* to detect and block people from accessing the financial system.

And they do exactly that. Really well. So well in fact that like 1/4th of the world's population doesn't have a basic ass bank account.

And the impact of this is horrifying.
Read 30 tweets
Tay 💖 Profile picture
Jun 14, 2023
A thread of misc. interesting things related to the Atomic Wallet hack, Lazarus, and especially what sprawling hacks look like on-chain.

(this thread is gunna get into the weeds. i suggest the other thread if you want something shallow and easy-to-digest 😉)
On Fri June 2nd, thousands of Atomic Wallet users had their wallets drained across basically every chain.

Each theft involved 1-3 new addies. Initially we were only able to link thefts on-chain if they sent gas to multiple addresses.

(green guys are what we put alerts on first) Image
The lack of consolidation means the majority of addresses collected so far came direct from users sharing their info w/ folks like @zachxbt or w/ Atomic, @elliptic, @SlowMist, etc.

We have no idea how complete our lists are currently, or how long the long tail will be.
Read 23 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(