Part of the CustodyStress archive of observed Bitcoin custody incidents

Single-Person Knowledge — Survived

Cases where single-person knowledge concentration existed but custody survived the stress event. These cases document the conditions — advance preparation, partial delegation, or successful recovery — that made survival possible.

47 cases in this intersection. 0% of determinate cases resulted in a blocked outcome and 100% in access survived. The most common recovery path is password bruteforce.

Archive analysis — 47 cases

Outcomes

0% of determinate cases resulted in blocked access — 69 percentage points below the archive-wide average of 69%. 100% resulted in recovered access — above the archive average.

Custody type

51% of cases involved software wallet, followed by hardware wallet (single key) at 23%.

Primary stress condition

40% of cases involve passphrase unavailable. Coercion accounts for a further 23%.

Recovery path

Password Bruteforce is the most documented recovery path (11 cases, 23% of subset). Of those with a determinate outcome, 100% resulted in recovered or constrained access.

Documentation

49% of cases had present and interpretable documentation — yet still produced a blocked or constrained outcome.

Structural dependency

100% of cases carry a single-person knowledge dependency tag — the most common structural factor in this subset.

Browse archive Archive statistics Scenarios Dependencies About

0

Blocked

0

Constrained

47

Survived

0

Indeterminate

0% of determinate cases resulted in blocked or constrained access.

47 observed cases

Survived

47 (100%)

Taehwa Kim: Kidnapped Bitcoin Trader Resists Coercion in Philippines

Hardware wallet (single key)

Survived 2025

Taehwa Kim, a Korean Bitcoin trader, was kidnapped in Makati, Philippines in January 2025. He was held hostage for three days by assailants who sought to extrac

Amouranth's $20M Bitcoin Wallet Posted Publicly; Armed Home Invasion Followed

Unknown custody system

Survived 2025

Kaitlyn Siragusa, a prominent streaming and content creator known online as Amouranth, posted a screenshot displaying what appeared to be a $20 million Bitcoin

Italian Crypto Entrepreneur Survives Torture Ordeal in Manhattan, Keeps Bitcoin

Unknown custody system

Survived 2025

In May 2025, a 28-year-old Italian cryptocurrency entrepreneur based in New York City was abducted and held captive in a luxury Manhattan apartment for several

TikTok Crypto Trader Kidnapped in Juvisy-sur-Orge, France — Released After Minimal Balance Found

Software wallet

Survived 2025

In June 2025, a cryptocurrency trader and TikTok content creator was kidnapped by four men while returning home to Juvisy-sur-Orge, a suburb south of Paris. The

Goiania Wrench Attack: Physical Coercion Attempt on Bitcoin Holder Thwarted by Police

Unknown custody system

Survived 2025

In June 2025, a cryptocurrency-holding businessman in Goiania, Brazil was lured to what appeared to be a legitimate business meeting. The location was instead a

Ledger Hardware Wallet: Multiple Account Discovery After Failed Seed Verification

Hardware wallet (single key)

Survived 2024

On March 21, 2024, ContourCool attempted a long-deferred security verification of their Ledger hardware wallet by importing their seed phrase into SeedSigner an

Samourai Wallet Seizure: Recovering Bitcoin After Platform Shutdown

Software wallet

Survived 2024

On April 28, 2024, a BitcoinTalk user reported that Bitcoin deposited to their Samourai Wallet became inaccessible following the FBI's shutdown of the platform.

Victoriaville Forum Moderator Survives Two Kidnapping Attempts Over Bitcoin Holdings

Hardware wallet (single key)

Survived 2024

In November 2024, a Bitcoin forum moderator residing in Victoriaville, Quebec, Canada, became the target of two coordinated kidnapping attempts separated by fou

Tim Heath Repels Kidnap Attempt by Fake Painters at Tallinn Rental Home

Hardware wallet (single key)

Survived 2024

In July 2024, Tim Heath, a cryptocurrency billionaire, faced a coordinated physical attack at his rental property in Tallinn, Estonia. Men posing as painters ga

Trezor Passphrase Forgotten After Factory Reset — Successful Recovery via Community Support

Hardware wallet with passphrase

Survived 2024

BTCRSMD, a moderately experienced Bitcoin user, executed a deliberate custody strategy in July 2024. The user purchased Bitcoin via Swan and routed the coins th

Russian Bitcoin Miner Kidnapped and Ransomed; Rescued by Police

Hardware wallet (single key)

Survived 2023

In December 2023, a 23-year-old cryptocurrency miner was abducted from his home in Izhevsk, Russia. The perpetrators held him for ransom, attempting to coerce h

Little Elm, Texas Home Invasion: $1.4M Hardware Wallet Sought but Not Found

Hardware wallet (single key)

Survived 2022

In December 2022, armed home invaders broke into a residential property in Little Elm, Texas, and subjected the occupants to approximately three hours of tortur

Oslo Bitcoin Millionaire's Escape From Armed Home Invader (2019)

Hardware wallet (single key)

Survived 2019

In May 2019, a Bitcoin millionaire residing in Oslo, Norway became the target of an armed home invasion. The attacker confronted the victim at his apartment, bu

Bither Desktop Wallet Application Crash: 3-Year Recovery via Password Rediscovery

Software wallet

Survived 2018

Sygun created a Bither wallet in March 2018 holding approximately 0.019 BTC. At an unspecified point, the Bither application ceased launching entirely—double-cl

Forgotten Bata Wallet Passphrase Recovered by Professional Service

Software wallet

Survived 2017

On August 1, 2017, a BitcoinTalk user operating under the handle InvestMeDaddy posted a recovery request after losing access to a Bata desktop cryptocurrency wa

Mark Frauenfelder's 7.4 BTC: Seed Phrase Discarded by Housecleaner, Recovered via Hardware Vulnerability

Hardware wallet (single key)

Survived 2017

Mark Frauenfelder, editor-in-chief of Boing Boing and Wired contributor, purchased 7.4 Bitcoin in January 2016 for approximately $3,000 and transferred it to a

Armed Kidnapping for Hardware Wallet Access: $1.8M Ether Theft — New York 2017

Hardware wallet with passphrase

Survived 2017

On November 4, 2017, Louis Meza, 35, of Jersey City, New Jersey, orchestrated a sophisticated attack against a personal acquaintance in New York City. Meza arra

Forgotten Trezor PIN and Lost Seed Words: $30,000 Bitcoin Recovery

Hardware wallet (single key)

Survived 2017

In 2017, a Bitcoin holder using a Trezor hardware wallet lost access to approximately $30,000 worth of Bitcoin after forgetting both the device PIN and the back

Colorado Bitcoin Investor Death: Family Discovery and Coinbase Estate Transfer 2017

Exchange custody

Survived 2017

A Colorado-based Bitcoin investor died suddenly in 2017 without informing his family of his cryptocurrency holdings. The family had no initial awareness that he

Corrupted 2013 wallet.dat Recovery via Community-Guided Disk Scanning

Software wallet

Survived 2017

In December 2017, a macOS Bitcoin Core user attempted to restore access to two wallet.dat files created in late 2013. The user had downloaded a contemporary ver

Block.io Custodial Lockout: 2FA Authentication Failure and Support-Dependent Recovery

Exchange custody

Survived 2016

On January 18, 2016, a BitcoinTalk user identified as 'statue' reported being locked out of their Block.io online wallet after entering an incorrect two-factor

Bitcoin Core Wallet Corruption: Selective Key Decryption Failure and Community Recovery

Software wallet

Survived 2015

Henke created an encrypted wallet backup on December 20, 2015, containing approximately 4 BTC. After refreshing his Windows 7 system and reinstalling Bitcoin Co

Recovering Deleted Bitcoin Core wallet.dat via pywallet: Device Loss and Forensic Key Extraction

Software wallet

Survived 2015

Edgar's Bitcoin Core wallet became inaccessible in 2015 when the wallet.dat file was removed from the active system while the Bitcoin Core client remained open.

Recovery of Dormant Blockchain.info Wallet via Legacy 20-Word Mnemonic (2017)

Exchange custody

Survived 2014

Roland808, a BitcoinTalk user, discovered a text file on their computer in March 2017 dated from 2014 containing a label 'bitcoin nmemonic' followed by 20 rando

Paper Wallet Private Key Recovery: Reconstructing Corrupted Font-Rendered WIF

Software wallet

Survived 2014

In 2014, a Bitcoin holder generated a paper wallet using a widely available online paper wallet generator tool. The printed document contained both a public add

← Previous

1 2

Browse by dependency and outcome

Device-Dependent Access — Blocked Passphrase Dependency — Blocked Undocumented Recovery Procedure — Blocked Single-Person Knowledge — Blocked Device-Dependent Access — Survived Undocumented Recovery Procedure — Survived Institutional Cooperation Required — Constrained Institutional Cooperation Required — Blocked Shared Service Dependency — Blocked Passphrase Dependency — Survived Legal Authority Required — Blocked Shared Service Dependency — Constrained Legal Authority Required — Constrained Single-Person Knowledge — Constrained Geographic Access Constraint — Blocked All cases

This archive documents cases where a legitimate owner, heir, or authorized party encountered barriers accessing or recovering Bitcoin due to a failure in the custody arrangement. The central question for inclusion is: did the custody structure fail a legitimate access or recovery attempt?

A case must satisfy all three of the following to be included:

Legitimate access attempt. The person attempting to access or recover the Bitcoin was the owner, a designated heir, an executor, a legal authority, or another party with a legitimate claim — not a thief, attacker, or unauthorized third party.
Custody structure failure. The failure was caused by a property of the custody arrangement — missing credentials, structural dependencies, documentation gaps, knowledge concentration, legal barriers, or institutional constraints — not market conditions, individual-level fraud or theft, or protocol-level issues. Platform-level failures that block legitimate user access are in scope regardless of their cause.
Documentable outcome or access constraint. The case must have a stated or inferable outcome: access blocked, access constrained, access delayed, or access eventually achieved through a recovery path. Cases with entirely unknown outcomes are included only where the structural failure is documented and the constraint is unambiguous.

Owner death or incapacity — Bitcoin held in self-custody that becomes inaccessible to heirs or designated parties because credentials, documentation, or operational knowledge were not transferred
Passphrase loss — BIP39 passphrase forgotten or unavailable, blocking access to a funded wallet even where the seed phrase is present
Seed phrase or wallet backup unavailable — no independent recovery path existed or the backup was destroyed, lost, or never created
Device loss without independent backup — hardware wallet, phone, or computer lost or destroyed with no recovery path outside the device
Documentation absent or ambiguous — heirs or executors cannot determine that Bitcoin exists, which wallet holds it, or how to access it
Knowledge concentration — only one person knew the procedure, passphrase, or access method; that person is dead, incapacitated, or unreachable
Multisig quorum failure — a threshold signature arrangement cannot be completed because signers are unavailable, uncooperative, incapacitated, or have lost their keys
Legal authority / access mismatch — a court order, probate ruling, or power of attorney establishes legal entitlement but provides no technical path to access
Institutional custody barrier — exchange or platform hacks, insolvency, regulatory seizure, or operational failure that caused a access constraint or failure for legitimate users, whether temporary, prolonged, or permanent. The failure of the custodian to remain available or solvent is itself the in-scope event.
Forced relocation or geographic constraint — physical access to a device or location required for recovery is blocked by displacement, border restrictions, or political circumstances
Coercion — the holder was compelled under threat to transfer Bitcoin or disclose credentials during an access event
Hidden asset discovery — heirs or executors locate a wallet or account but cannot access it due to missing credentials or operational knowledge

Market losses, investment losses, yield scheme losses, or Ponzi scheme losses
Hacks or theft targeting an individual's personal security (phishing, SIM swap, social engineering, malware) where the custody architecture itself did not fail
Unauthorized transfers where the holder's custody system was not the cause of the failure
Ordinary transaction mistakes — wrong-address sends, fee errors, mistaken amounts
Protocol-level failures — cryptographic vulnerabilities, consensus bugs, firmware integrity failures
Deliberate burns or tribute burns
Cases where the stated loss is unverifiable and no structural custody failure is described

Cases are drawn from public sources including forum posts, news reporting, court documents, academic research, and direct submissions. Each case is reviewed against the inclusion criteria above before publication. Source material is retained and available on request for documented cases.

The archive is observational and descriptive. It does not attempt to document all Bitcoin custody failures — only those meeting the criteria above with sufficient documentation to describe the structural failure and its outcome.