Part of the CustodyStress archive of observed Bitcoin custody incidents

Chronology of Documented Custody Incidents

A chronological record of significant Bitcoin custody failures documented in this archive. This chronology covers events and periods represented in the archive — it does not attempt to document all Bitcoin custody failures, and the absence of an event does not mean it did not occur.

Notable cases Archive statistics Scenarios Dependencies About Browse archive

2009–2012

Early Bitcoin

Wallet.dat files lost with discarded or formatted hard drives — no seed phrase standard existed.

Early mining rewards on wallets with no backup infrastructure.

Password-encrypted wallets with forgotten passwords — no recovery mechanism.

2013–2014

First price cycle and Mt. Gox collapse

James Howells discards hard drive containing approximately 8,000 BTC during a home clearout.

Stefan Thomas loses access to IronKey drive holding approximately 7,002 BTC after forgetting encryption password.

Mt. Gox suspends withdrawals in February 2014 and files for bankruptcy in March 2014. Approximately 850,000 BTC becomes inaccessible.

First wave of passphrase-related failures as BIP39 hardware wallets enter mainstream use.

2015–2016

Bear market and Bitfinex hack

Exchange failures during the 2013–2015 bear market produce a wave of institutional custody cases.

Bitfinex is hacked in August 2016: approximately 119,756 BTC stolen. All customer accounts receive a forced 36% haircut.

Growing hardware wallet adoption creates a new class of passphrase failures.

2017–2018

Second price cycle

The 2017 bull market drives the largest cohort of new Bitcoin holders yet. Many set up hardware wallets with passphrases they would later forget.

Post-2017 bear market produces a wave of exchange closures and access failures.

Coincheck loses approximately $530 million in NEM in January 2018 — largest exchange hack by value at the time.

2019

QuadrigaCX collapse

Gerald Cotten, founder of Canadian exchange QuadrigaCX, dies in December 2018 as the sole holder of cold wallet credentials. Approximately CAD $190 million in customer funds becomes inaccessible.

The archive's most documented single-person knowledge failure at institutional scale.

2020–2021

Institutional adoption and COVID period

Institutional Bitcoin adoption accelerates. Estate and inheritance failures increase as earlier cohorts of holders age.

Mobile wallet adoption peaks. A new cohort of holders sets up wallets without seed phrase documentation.

Coercion incidents begin increasing as Bitcoin holdings become more widely known.

2022

Exchange collapse wave

Terra/Luna collapse triggers a liquidity crisis across the industry.

Celsius Network freezes withdrawals in June 2022 and files for bankruptcy in July 2022. Approximately $4.7 billion in customer assets frozen.

Voyager Digital files for bankruptcy in July 2022.

BlockFi freezes withdrawals in November 2022 and files for bankruptcy.

FTX collapses in November 2022 — the largest exchange failure since Mt. Gox. Approximately $8 billion in customer assets misappropriated.

2022 produces the largest single-year volume of institutional custody failures in the archive.

2023–present

Coercion era

Physical coercion becomes the dominant custody stress condition in the archive for the first time, overtaking vendor lockout.

Targeted attacks on Bitcoin holders — home invasions, kidnappings — increase as Bitcoin reaches new price levels.

Estate and inheritance cases from the 2017 and 2021 cohorts continue accumulating.

This chronology reflects cases documented in the archive as of the most recent build. The archive is observational — it documents cases with sufficient public information to classify the custody failure and outcome.

Browse full archive → Archive methodology →

This archive documents cases where a legitimate owner, heir, or authorized party encountered barriers accessing or recovering Bitcoin due to a failure in the custody arrangement. The central question for inclusion is: did the custody structure fail a legitimate access or recovery attempt?

A case must satisfy all three of the following to be included:

Legitimate access attempt. The person attempting to access or recover the Bitcoin was the owner, a designated heir, an executor, a legal authority, or another party with a legitimate claim — not a thief, attacker, or unauthorized third party.
Custody structure failure. The failure was caused by a property of the custody arrangement — missing credentials, structural dependencies, documentation gaps, knowledge concentration, legal barriers, or institutional constraints — not market conditions, individual-level fraud or theft, or protocol-level issues. Platform-level failures that block legitimate user access are in scope regardless of their cause.
Documentable outcome or access constraint. The case must have a stated or inferable outcome: access blocked, access constrained, access delayed, or access eventually achieved through a recovery path. Cases with entirely unknown outcomes are included only where the structural failure is documented and the constraint is unambiguous.

Owner death or incapacity — Bitcoin held in self-custody that becomes inaccessible to heirs or designated parties because credentials, documentation, or operational knowledge were not transferred
Passphrase loss — BIP39 passphrase forgotten or unavailable, blocking access to a funded wallet even where the seed phrase is present
Seed phrase or wallet backup unavailable — no independent recovery path existed or the backup was destroyed, lost, or never created
Device loss without independent backup — hardware wallet, phone, or computer lost or destroyed with no recovery path outside the device
Documentation absent or ambiguous — heirs or executors cannot determine that Bitcoin exists, which wallet holds it, or how to access it
Knowledge concentration — only one person knew the procedure, passphrase, or access method; that person is dead, incapacitated, or unreachable
Multisig quorum failure — a threshold signature arrangement cannot be completed because signers are unavailable, uncooperative, incapacitated, or have lost their keys
Legal authority / access mismatch — a court order, probate ruling, or power of attorney establishes legal entitlement but provides no technical path to access
Institutional custody barrier — exchange or platform hacks, insolvency, regulatory seizure, or operational failure that caused a access constraint or failure for legitimate users, whether temporary, prolonged, or permanent. The failure of the custodian to remain available or solvent is itself the in-scope event.
Forced relocation or geographic constraint — physical access to a device or location required for recovery is blocked by displacement, border restrictions, or political circumstances
Coercion — the holder was compelled under threat to transfer Bitcoin or disclose credentials during an access event
Hidden asset discovery — heirs or executors locate a wallet or account but cannot access it due to missing credentials or operational knowledge

Market losses, investment losses, yield scheme losses, or Ponzi scheme losses
Hacks or theft targeting an individual's personal security (phishing, SIM swap, social engineering, malware) where the custody architecture itself did not fail
Unauthorized transfers where the holder's custody system was not the cause of the failure
Ordinary transaction mistakes — wrong-address sends, fee errors, mistaken amounts
Protocol-level failures — cryptographic vulnerabilities, consensus bugs, firmware integrity failures
Deliberate burns or tribute burns
Cases where the stated loss is unverifiable and no structural custody failure is described

Cases are drawn from public sources including forum posts, news reporting, court documents, academic research, and direct submissions. Each case is reviewed against the inclusion criteria above before publication. Source material is retained and available on request for documented cases.

The archive is observational and descriptive. It does not attempt to document all Bitcoin custody failures — only those meeting the criteria above with sufficient documentation to describe the structural failure and its outcome.