CustodyStress
Archive › Browse by halving cycle and custody type › Halving Cycle 3 (2017–2020) — Exchange custody
Part of the CustodyStress archive of observed Bitcoin custody incidents
Cycle 3Exchange custody

Halving Cycle 3 (2017–2020) — Exchange custody

Exchange custody failures from Halving Cycle 3 (2017–2020). The 2017 bull cycle drove a surge in exchange adoption, followed by a wave of exchange failures in the 2018–2019 bear market. QuadrigaCX — where the founder died as sole custodian — is the defining failure of this cycle.

78 cases in this intersection. 65% of determinate cases resulted in a blocked outcome and 7% in access survived. The most common recovery path is no path available.

Archive analysis — 78 cases
Outcomes
65% of determinate cases resulted in blocked access, close to the archive-wide average of 69%. Only 7% resulted in recovered access — one of the lower survival rates in the archive. 28% resulted in constrained recovery.
Documentation coverage
31% of cases have indeterminate outcomes — higher than the archive average of 43%.
Primary stress condition
67% of cases involve vendor lockout. Passphrase unavailable accounts for a further 9%.
Recovery path
Exchange Support is the most documented recovery path (21 cases, 27% of subset). Of those with a determinate outcome, 93% resulted in recovered or constrained access.
Documentation
51% of cases had present and interpretable documentation — yet still produced a blocked or constrained outcome.
Scale
23% of cases involved large or very large holdings (10+ BTC).
Browse archive Archive statistics Scenarios Dependencies About
35
Blocked
15
Constrained
4
Survived
24
Indeterminate

93% of determinate cases resulted in blocked or constrained access.

78 observed cases
Blocked
35 (45%)
Constrained
15 (19%)
Survived
4 (5%)
Indeterminate
24 (31%)
Altsbit Exchange Hack (February 2020): Institutional Failure, Partial Recovery
Exchange custody
Blocked 2020
Altsbit, an Italian cryptocurrency exchange that had been operational for only a few months, suffered a catastrophic security breach in February 2020. Attackers
Coinbase Account Lockout: Multiple Users Denied Access Despite Identity Verification (2016–2020)
Exchange custody
Blocked 2020
Between December 2020 and the time of posting, multiple Coinbase users reported extended account lockouts that prevented trading, withdrawals, and even portfoli
Six Bitcoin Custody Failures: Exchange Collapse, Laptop Theft, and Deleted Wallets (2020)
Exchange custody
Blocked 2020
In March 2020, a BitcoinTalk forum thread aggregated six real-world Bitcoin access failures from individual users. User garyrowe reported losing keys to a non-B
Five Old Blockchain.info Wallets Inaccessible: Non-Standard Recovery Phrases Beyond Recovery Tools
Exchange custody
Indeterminate 2020
In July 2020, forum user gbola reported discovering five old Blockchain.info recovery phrases originating from approximately 2014, when the user's family were e
Blockchain.com Account Inaccessible: Forgotten Email Address and Missing Recovery Words
Exchange custody
Indeterminate 2020
In approximately 2016, the user angly11 created a Blockchain.com hosted wallet account but committed a critical documentation failure: they did not record the e
2.9 BTC in Unidentified Web Wallet from 2012–2013: Provider Unknown, Access Impossible
Exchange custody
Blocked 2020
In May 2020, a BitcoinTalk user reporting under the handle cyptomania rediscovered Bitcoin documentation while conducting routine record cleanup. The user had s
Armed Home Invasion and Forced Cryptocurrency Transfer in Carlisle
Exchange custody
Blocked 2020
In February 2020, armed intruders broke into a residential property in Carlisle, England. The attackers, wielding a gun and knife, forced the occupants—a couple
Livecoin Exchange Compromised by Server Attack — Price Manipulation, Permanent Shutdown
Exchange custody
Blocked 2020
Livecoin, a Russian cryptocurrency exchange, suffered a critical infrastructure compromise on 23 December 2020 when attackers gained control of the exchange's s
KuCoin Exchange Breach September 2020: $280M Stolen, $204M Recovered
Exchange custody
Constrained 2020
On September 26, 2020, KuCoin announced a security breach affecting its hot wallets. Attackers with access to private keys stole approximately $280 million in c
Eterbase Exchange Breach: $5.4M Stolen, Limited Recovery
Exchange custody
Blocked 2020
On September 8, 2020, Eterbase, a Slovakian cryptocurrency exchange, discovered unauthorised transfers totalling approximately $5.4 million from its hot wallets
Seed Phrase Lost to Household Disposal, Partial Password Known—Blockchain.info Hosted Wallet Inaccessible
Exchange custody
Indeterminate 2020
In April 2020, a Blockchain.info user experienced near-total loss of account recovery materials. The user maintained his seed phrase in two locations: a physica
Blockchain.info Wallet Access Lost: Destroyed Phone Note, Discarded Seed Paper, Partial Password
Exchange custody
Indeterminate 2020
In April 2020, a forum user described a friend's custody access failure involving a Blockchain.info hosted wallet (the platform later rebranded to Blockchain.co
Blockchain.com Wallet Locked: Partial Recovery Phrase and Lost Secondary Withdrawal Password
Exchange custody
Indeterminate 2020
In September 2020, a BitcoinTalk user identified as sa14 reported complete inability to access a Blockchain.com wallet created on November 29, 2017, despite pos
Blockchain.com Dormant Accounts: Lost Passwords and Missing Backup Files
Exchange custody
Blocked 2019
Between approximately 2013 and 2019, multiple users of Blockchain.com (formerly Blockchain.info) experienced permanent loss of Bitcoin held in dormant accounts.
Pre-2014 Blockchain.info Wallet: Non-Standard Mnemonic Format Blocks Recovery
Exchange custody
Indeterminate 2019
In May 2019, a Bitcoin holder identified as pizzdaniel posted to BitcoinTalk describing a multi-year custody failure involving wallets created on blockchain.inf
Blockchain.com Web Wallet Access Failures: Lost Passwords and Inaccessible Email Recovery
Exchange custody
Blocked 2019
Between 2013 and 2019, several users created Bitcoin wallets on blockchain.com (formerly blockchain.info), a web-based custodial platform popular during early B
Masked Raiders Rob Bitcoin Exchange in Sparkhill, Birmingham (July 2019)
Exchange custody
Blocked 2019
In July 2019, a group of masked raiders conducted an armed robbery of a Bitcoin exchange located in the Sparkhill area of Birmingham, England. The incident occu
Einstein Exchange Vancouver: $16M CAD Claimed Liabilities, Insolvent Collapse 2019
Exchange custody
Blocked 2019
Einstein Exchange, a Vancouver-based cryptocurrency platform founded by Michael Ongun Gokturk, marketed itself as Canada's fastest-growing digital currency exch
Upbit Exchange Hot Wallet Breach — 342,000 ETH Stolen, November 2019
Exchange custody
Constrained 2019
On November 27, 2019, the South Korean exchange Upbit discovered that 342,000 ETH—valued at approximately $49 million USD at the time—had been transferred from
Bitrue Singapore Exchange Security Breach — $4.2M Theft, Full User Refund
Exchange custody
Constrained 2019
On June 27, 2019, Singapore-based exchange Bitrue discovered a $4.2 million security breach affecting 90 user accounts. An attacker had exploited a weakness in
CoinBene Exchange Hack — $100M+ Stolen, Maintenance Cover-Up, March 2019
Exchange custody
Indeterminate 2019
CoinBene, a cryptocurrency exchange, abruptly went offline in March 2019 citing scheduled maintenance. Within days, blockchain analysts at multiple firms detect
QuadrigaCX Exchange Collapse: $190M Bitcoin Lost After Owner's Death
Exchange custody
Blocked 2019
QuadrigaCX was a Canadian cryptocurrency exchange that collapsed in 2019 following the sudden death of its founder and sole operator. The exchange held approxim
Passphrase unavailable — exchange custody, unknown (2019)
Exchange custody
Blocked 2019
A 2019 BitcoinTalk thread documented a recurring custody failure pattern affecting blockchain.com (formerly blockchain.info) users from the 2011–2014 era. The o
QuadrigaCX Exchange Collapse (April 2019): Mass Custody Loss
Exchange custody
Blocked 2019
QuadrigaCX, founded in 2013 and one of Canada's largest cryptocurrency exchanges, ceased operations on April 15, 2019, with approximately 115,000 users unable t
Bithumb $13M EOS Insider Theft April 2019: Platform Lockout and Third Security Breach
Exchange custody
Constrained 2019
On April 1, 2019, South Korean exchange Bithumb detected abnormal withdrawal patterns in its internal monitoring systems and halted all deposit and withdrawal s
← Previous
1234
Next →
Browse by halving cycle and custody type
Halving Cycle 4 (2021–2024) — Exchange custody Halving Cycle 4 (2021–2024) — Hardware wallet (single key) Halving Cycle 4 (2021–2024) — Software wallet Halving Cycle 3 (2017–2020) — Software wallet Halving Cycle 3 (2017–2020) — Hardware wallet (single key) Halving Cycle 2 (2013–2016) — Software wallet Halving Cycle 2 (2013–2016) — Exchange custody Halving Cycle 1 (2009–2012) — Software wallet Halving Cycle 1 (2009–2012) — Exchange custody All cases
Terms guide
Outcome terms
Survived
Access remained possible under the reported conditions.
Constrained
Access remained possible, but only with delay, dependence, or significant difficulty.
Blocked
Access was not possible under the reported conditions.
Indeterminate
There was not enough information to determine the outcome.
Assessment terms
Survivability
The degree to which a custody system maintains the possibility of authorized recovery under stress.
Archive inclusion criteria

This archive documents cases where a legitimate owner, heir, or authorized party encountered barriers accessing or recovering Bitcoin due to a failure in the custody arrangement. The central question for inclusion is: did the custody structure fail a legitimate access or recovery attempt?

Inclusion requirements

A case must satisfy all three of the following to be included:

  1. Legitimate access attempt. The person attempting to access or recover the Bitcoin was the owner, a designated heir, an executor, a legal authority, or another party with a legitimate claim — not a thief, attacker, or unauthorized third party.
  2. Custody structure failure. The failure was caused by a property of the custody arrangement — missing credentials, structural dependencies, documentation gaps, knowledge concentration, legal barriers, or institutional constraints — not market conditions, individual-level fraud or theft, or protocol-level issues. Platform-level failures that block legitimate user access are in scope regardless of their cause.
  3. Documentable outcome or access constraint. The case must have a stated or inferable outcome: access blocked, access constrained, access delayed, or access eventually achieved through a recovery path. Cases with entirely unknown outcomes are included only where the structural failure is documented and the constraint is unambiguous.
In scope
  • Owner death or incapacity — Bitcoin held in self-custody that becomes inaccessible to heirs or designated parties because credentials, documentation, or operational knowledge were not transferred
  • Passphrase loss — BIP39 passphrase forgotten or unavailable, blocking access to a funded wallet even where the seed phrase is present
  • Seed phrase or wallet backup unavailable — no independent recovery path existed or the backup was destroyed, lost, or never created
  • Device loss without independent backup — hardware wallet, phone, or computer lost or destroyed with no recovery path outside the device
  • Documentation absent or ambiguous — heirs or executors cannot determine that Bitcoin exists, which wallet holds it, or how to access it
  • Knowledge concentration — only one person knew the procedure, passphrase, or access method; that person is dead, incapacitated, or unreachable
  • Multisig quorum failure — a threshold signature arrangement cannot be completed because signers are unavailable, uncooperative, incapacitated, or have lost their keys
  • Legal authority / access mismatch — a court order, probate ruling, or power of attorney establishes legal entitlement but provides no technical path to access
  • Institutional custody barrier — exchange or platform hacks, insolvency, regulatory seizure, or operational failure that caused a access constraint or failure for legitimate users, whether temporary, prolonged, or permanent. The failure of the custodian to remain available or solvent is itself the in-scope event.
  • Forced relocation or geographic constraint — physical access to a device or location required for recovery is blocked by displacement, border restrictions, or political circumstances
  • Coercion — the holder was compelled under threat to transfer Bitcoin or disclose credentials during an access event
  • Hidden asset discovery — heirs or executors locate a wallet or account but cannot access it due to missing credentials or operational knowledge
Out of scope
  • Market losses, investment losses, yield scheme losses, or Ponzi scheme losses
  • Hacks or theft targeting an individual's personal security (phishing, SIM swap, social engineering, malware) where the custody architecture itself did not fail
  • Unauthorized transfers where the holder's custody system was not the cause of the failure
  • Ordinary transaction mistakes — wrong-address sends, fee errors, mistaken amounts
  • Protocol-level failures — cryptographic vulnerabilities, consensus bugs, firmware integrity failures
  • Deliberate burns or tribute burns
  • Cases where the stated loss is unverifiable and no structural custody failure is described
Source and verification

Cases are drawn from public sources including forum posts, news reporting, court documents, academic research, and direct submissions. Each case is reviewed against the inclusion criteria above before publication. Source material is retained and available on request for documented cases.

The archive is observational and descriptive. It does not attempt to document all Bitcoin custody failures — only those meeting the criteria above with sufficient documentation to describe the structural failure and its outcome.

Original text
Rate this translation
Your feedback will be used to help improve Google Translate