Part of the CustodyStress archive of observed Bitcoin custody incidents
CS-00252
The attackers demanded 1 BTC to decrypt the files—less than the wallet held—but
BlockedCase description
A 2015 forum case documents a user who stored their Bitcoin Core wallet on a Windows PC. The PC was infected with ransomware that encrypted all local files. The user had not backed up their wallet. The attackers demanded 1 BTC to decrypt the files—less than the wallet held—but the user had no way to send Bitcoin without their wallet. The wallet remained encrypted and inaccessible.
Custody context
| Stress condition | Device loss |
| Custody system | Mobile or software wallet |
| Outcome | Blocked |
| Documentation | Unknown |
| Year observed | 2015 |
| Country | Unknown |
Structural dependencies observed
What this illustrates
The wallet existed only on that device. When the device became inaccessible, there was no other way back in. Access was not recoverable.
Outcome interpretation
Access was not possible under the reported conditions.
Source
Publicly Reported
Evidence type
Forum post
Evidence link
Related cases involving device loss
This archive documents observed custody survivability failures. It does not attempt to document all Bitcoin losses or security incidents.
Submit a case
← All cases
Framework references
Where Bitcoin Custody Intersects Legal and Fiduciary Authority
Where custody creates gaps in estate planning, fiduciary duty, and professional responsibility.
Professional Scope Boundary Matrix
What each professional or product covers, what they do not, and where gaps form between them.
The Independent Assessment Layer in Bitcoin Custody
How independent diagnostic layers emerge when multiple parties depend on shared infrastructure.
Translate