CustodyStress
ArchiveDevice-Dependent Access › Vendor Lockout
Part of the CustodyStress archive of observed Bitcoin custody incidents

Device-Dependent Access — Vendor Lockout

Cases where access to the wallet depended on a specific physical device or local installation, with no device-independent recovery path documented. Includes hardware wallets where the seed was stored only on the device, and software wallets where no seed phrase backup existed. This page shows archive cases where both conditions were present.

22% of all Vendor Lockout cases in the archive involve this structural dependency. Among them, 53% of determinate cases resulted in a blocked outcome. The most common recovery path is exchange support.

Browse archive Archive statistics Scenarios Dependencies About
10
Blocked
6
Constrained
3
Survived
23
Indeterminate

84% of determinate cases resulted in blocked or constrained access.

42 observed cases
Blocked
10 (24%)
Constrained
6 (14%)
Survived
3 (7%)
Indeterminate
23 (55%)
Blockchain.info Hosted Wallet Lockout: Decryption Error and Recovery via Desktop Import
Exchange custody
Indeterminate 2013
In March 2013, a Blockchain.info user ('key2') encountered a critical access failure on the platform's hosted wallet service shortly after their first Bitcoin p
Armory Wallet Synchronization Failure: Access Restored After Software Upgrade
Software wallet
Survived 2013
In October 2013, a BitcoinTalk user holding approximately 0.1008 BTC in an encrypted Armory wallet encountered a critical access failure. The user possessed bot
Blockchain.info iOS App Private Key Corruption: Developer Assisted One User, Denied Another
Exchange custody
Blocked 2013
In April 2013, a blockchain.info iOS app user transferred Bitcoin from Mt. Gox to a newly created address via blockchain.info's mobile application. The transact
Blockchain.info Android Wallet PIN-Only Setup Access Failure (2013)
Exchange custody
Indeterminate 2013
In June 2013, a user known as NeedChangeNow created a mobile Bitcoin wallet using Blockchain.info's Android application on a Samsung Galaxy S4 running Android 4
Blockchain.info Two-Factor Authentication Lockout: Correct Credentials Rejected
Exchange custody
Indeterminate 2013
On April 21, 2013, Narydu, operator of bitcoinargentina.org, lost access to a Blockchain.info hosted wallet despite possessing both the correct primary password
Blockchain.info Web Wallet (2013): Silent Login Failure, Unresolved After 3 Months
Exchange custody
Blocked 2013
In late 2013, a user created a Bitcoin wallet on blockchain.info, then one of the most popular web-based custodial platforms. The wallet remained accessible dur
Blockchain.info Web Wallet: Imported Private Key Vanished After Sync Popup
Exchange custody
Blocked 2013
In February 2013, a BitcoinTalk user (BurtW) generated a vanity address using vanitygen and imported the private key into his Blockchain.info web wallet account
Blockchain.info Access Blocked After Platform Software Update
Exchange custody
Constrained 2013
A Blockchain.info user experienced sudden access denial to their hosted wallet following a platform software update. The incident occurred in an era when web-ba
Bitomat.pl Exchange Loses 17,000 BTC to AWS Instance Restart
Exchange custody
Constrained 2011
Bitomat.pl operated as the third-largest Bitcoin exchange globally and the largest in Poland during the early 2011 cryptocurrency market. On July 26, 2011, the
50btc Pool Mining Loss: 2–3 BTC Trapped in Defunct Pool, Virtual Disk Recovery Failed
Exchange custody
Indeterminate 2010
In 2010, a user identified as Zagal downloaded and ran 50miner, a mining client for the 50btc pool, on his personal computer for approximately one week. During
GreenAddress User Locked Out by 2FA Requirement Despite Mnemonic Backup
Collaborative custody
Constrained
A GreenAddress user transferred Bitcoin from Bitfinex to a GreenAddress multisig wallet, securing an encrypted backup of their recovery mnemonics using their Br
BTC-e Exchange Shutdown: Partial Recovery from Mining Pool Collapse
Software wallet
Constrained
BTC-e, a major cryptocurrency exchange operating since 2011, was shut down by law enforcement in July 2017. The platform held significant user deposits, includi
Mycelium Mobile Wallet Glitch: Bitcoin Inaccessible Despite Blockchain Confirmation
Software wallet
Blocked
In February 2020, a Bitcoin user purchased coins on the Mycelium mobile wallet application. Shortly after the purchase, the user attempted to create a backup bu
BitGo Wallet Permanently Inaccessible: Lost 2FA Device and Missing Documentation
Exchange custody
Blocked
A long-term Bitcoin holder maintained a BitGo-hosted wallet from 2015 without establishing comprehensive backup procedures or written documentation. The account
Samourai Wallet Balance Lost After Android Downgrade — Recovered via Older APK
Software wallet
Survived
The user maintained a deliberate hybrid custody model: cold storage via Tails-generated paper wallets and a Digital Bitbox hardware wallet for larger holdings,
BitGo Account Lockout: Forgotten Password, Inaccessible Recovery Email, Circular Dependency
Exchange custody
Blocked
A BitGo user faced complete account lockout after simultaneously losing access to two critical elements: the login password and the email address registered to
BlockTrail Wallet Recovery Blocked: Paper Backup Orphaned After Service Discontinuation
Multisig (self-managed)
Indeterminate
A Bitcoin holder discovered a printed paper backup from BlockTrail, a non-custodial wallet service that used 2-of-3 multisig and hierarchical deterministic key
← Previous
12
Next →
Related archive views
All Device-Dependent Access cases All Vendor Lockout cases Device-Dependent Access — Device Loss Device-Dependent Access — Passphrase Unavailable Device-Dependent Access — Seed Unavailable Single-Person Knowledge — Vendor Lockout Passphrase Dependency — Vendor Lockout Undocumented Recovery Procedure — Vendor Lockout All cases
Terms guide
Outcome terms
Survived
Access remained possible under the reported conditions.
Constrained
Access remained possible, but only with delay, dependence, or significant difficulty.
Blocked
Access was not possible under the reported conditions.
Indeterminate
There was not enough information to determine the outcome.
Assessment terms
Survivability
The degree to which a custody system maintains the possibility of authorized recovery under stress.
Archive inclusion criteria

This archive documents cases where a legitimate owner, heir, or authorized party encountered barriers accessing or recovering Bitcoin due to a failure in the custody arrangement. The central question for inclusion is: did the custody structure fail a legitimate access or recovery attempt?

Inclusion requirements

A case must satisfy all three of the following to be included:

  1. Legitimate access attempt. The person attempting to access or recover the Bitcoin was the owner, a designated heir, an executor, a legal authority, or another party with a legitimate claim — not a thief, attacker, or unauthorized third party.
  2. Custody structure failure. The failure was caused by a property of the custody arrangement — missing credentials, structural dependencies, documentation gaps, knowledge concentration, legal barriers, or institutional constraints — not market conditions, individual-level fraud or theft, or protocol-level issues. Platform-level failures that block legitimate user access are in scope regardless of their cause.
  3. Documentable outcome or access constraint. The case must have a stated or inferable outcome: access blocked, access constrained, access delayed, or access eventually achieved through a recovery path. Cases with entirely unknown outcomes are included only where the structural failure is documented and the constraint is unambiguous.
In scope
  • Owner death or incapacity — Bitcoin held in self-custody that becomes inaccessible to heirs or designated parties because credentials, documentation, or operational knowledge were not transferred
  • Passphrase loss — BIP39 passphrase forgotten or unavailable, blocking access to a funded wallet even where the seed phrase is present
  • Seed phrase or wallet backup unavailable — no independent recovery path existed or the backup was destroyed, lost, or never created
  • Device loss without independent backup — hardware wallet, phone, or computer lost or destroyed with no recovery path outside the device
  • Documentation absent or ambiguous — heirs or executors cannot determine that Bitcoin exists, which wallet holds it, or how to access it
  • Knowledge concentration — only one person knew the procedure, passphrase, or access method; that person is dead, incapacitated, or unreachable
  • Multisig quorum failure — a threshold signature arrangement cannot be completed because signers are unavailable, uncooperative, incapacitated, or have lost their keys
  • Legal authority / access mismatch — a court order, probate ruling, or power of attorney establishes legal entitlement but provides no technical path to access
  • Institutional custody barrier — exchange or platform hacks, insolvency, regulatory seizure, or operational failure that caused a access constraint or failure for legitimate users, whether temporary, prolonged, or permanent. The failure of the custodian to remain available or solvent is itself the in-scope event.
  • Forced relocation or geographic constraint — physical access to a device or location required for recovery is blocked by displacement, border restrictions, or political circumstances
  • Coercion — the holder was compelled under threat to transfer Bitcoin or disclose credentials during an access event
  • Hidden asset discovery — heirs or executors locate a wallet or account but cannot access it due to missing credentials or operational knowledge
Out of scope
  • Market losses, investment losses, yield scheme losses, or Ponzi scheme losses
  • Hacks or theft targeting an individual's personal security (phishing, SIM swap, social engineering, malware) where the custody architecture itself did not fail
  • Unauthorized transfers where the holder's custody system was not the cause of the failure
  • Ordinary transaction mistakes — wrong-address sends, fee errors, mistaken amounts
  • Protocol-level failures — cryptographic vulnerabilities, consensus bugs, firmware integrity failures
  • Deliberate burns or tribute burns
  • Cases where the stated loss is unverifiable and no structural custody failure is described
Source and verification

Cases are drawn from public sources including forum posts, news reporting, court documents, academic research, and direct submissions. Each case is reviewed against the inclusion criteria above before publication. Source material is retained and available on request for documented cases.

The archive is observational and descriptive. It does not attempt to document all Bitcoin custody failures — only those meeting the criteria above with sufficient documentation to describe the structural failure and its outcome.

Original text
Rate this translation
Your feedback will be used to help improve Google Translate