In brief
- Three UK teenagers have been jailed after carrying out a “wrench attack” robbery in which $4.3 million in crypto was stolen.
- Metropolitan Police said the suspects forced a victim to hand over crypto and car keys in a Hoxton burglary.
- The stolen cryptocurrency was recovered within 72 hours and returned two weeks later, police told Decrypt.
Three teenagers have been jailed following a “wrench attack” in which $4.3 million worth of cryptocurrency was stolen at knife point.
In a video released by the Metropolitan Police on Thursday, the trio were shown posing as delivery drivers to gain entry to a flat, where they threatened the occupant with knives and demanded his cryptocurrency holdings.
Police said the suspects travelled from Sheffield to London on June 17, 2024, before carrying out the burglary, which was later linked to them through social media footage and vehicle tracking following the theft of the victim’s car.
The suspects, who were aged 16 and 17 at the time, recorded themselves on Snapchat leaving the scene in the victim’s BMW, footage police later used to help identify and link them to the burglary.
Officers were alerted when the stolen vehicle triggered an automatic number plate recognition camera on the M1 in Northamptonshire less than three hours later, before the car was eventually stopped on the M6 in Warwickshire following a brief pursuit.
The victim’s crypto was “recovered within 72 hours and returned two weeks later,” a representative from the Metropolitan Police told Decrypt.
The three defendants were sentenced to a total of 16 years in youth detention after pleading guilty to charges linked to the burglary and car theft. Individual sentences ranged from 46 to 80 months, authorities confirmed with Decrypt.
A minor who police said cannot be named for legal reasons “pleaded guilty to aggravated burglary, possession of criminal property and theft of a motor vehicle.” The minor received 80 months in custody.
The case was "a clear example of how the suspects thought posting their criminal exploits on social media would build them a following, however all it built was the case against them,” Detective Constable Jonathan Leung said in a statement.
Crypto “wrench attacks”
Security researchers in the crypto industry say the case reflects a well-established pattern in which attackers bypass technical safeguards by targeting individuals directly, often after identifying victims through leaked or publicly exposed personal information.
These so-called “wrench attacks” have resulted in more than $41 million in losses in 2025, marking a 75% year-on-year incidence growth rate, with France being at the center of the crime wave.
“This isn’t a new tactic. Law enforcement, including the FBI, has documented “wrench attacks” for years, where cases where criminals physically target crypto holders instead of hacking wallets,” Andy Zhou, co-founder of blockchain security firm BlockSec, told Decrypt.
The core idea, Zhou explained, is that “it’s often easier to coerce a person than to break cryptography.”
Most cases begin with information exposure instead of outright violence, he said.
“Data leaks, breached customer records, or publicly available online information can be combined to identify who likely holds crypto and where they live,” he noted.
The most common mistake is overexposure, Zhou said, noting that, “People unintentionally link their real identity, location, and crypto holdings through data breaches, social media, reused phone numbers, or public wallet activity.”
Common risks include single-point custody, where one device or person can move funds immediately, increasing exposure to coercion, Zhou said. He added that warning signs include targeted phishing, unexpected account recovery attempts, SIM-swap symptoms, and unusual contact with individuals or internal systems.
“The practical takeaway is simple,” Zhou said, explaining that, “we need to assume attackers may target humans. Reducing personal exposure and adding friction to fund movements often matters more than adding another layer of cryptography.”
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
AI Crypto Agents Are Moving Real Money And the Risks Are Real: Expert
_AI crypto agents in DeFi are executing unscripted trades, raising risks of exploits, losses, and unpredictable market behavior._
A crypto researcher is raising red flags about AI agents managing real funds in DeFi.
Tanaka, who has been testing these agent setups firsthand, says the danger is
LiveBTCNews16h ago
Gauntlet Update on Resolv Vulnerability Handling Progress: USDC Frontier has been de-risked and will gradually restart the treasury.
Gauntlet has updated the progress on resolving the vulnerability on platform X. The USDC Frontier (v1) on the Base network has been reallocated, eliminating bad debt risk. Deposits for v1 and v2 vaults are now reopened, and Morpho will remove the warning tomorrow. The mainnet USDC Frontier (v2) vault is being restarted, and more information will be provided based on subsequent fixes.
GateNews18h ago
List of DAO updates on USR event progress: $8.4 million loan has been repaid, risk nearly fully mitigated.
The List DAO has released an update on platform X, stating that the $8.6 million loan has been repaid $8.4 million, and all positions have been redeemed at a 1:1 ratio, with no losses to users. Only $26,000 remains unpaid, and relevant users are urged to contact us as soon as possible to complete repayment.
GateNews18h ago
Singapore cracks down on cryptocurrency asset theft case, involving an amount of 8.83 million Singapore dollars.
On March 29, Singapore cracked a case of internal employee conflict involving the theft of cryptocurrency assets, with an amount of 8.83 million Singapore dollars at stake. Three defendants, dissatisfied with their dismissal, illegally hacked into their former employer SafeX's account, stole cryptocurrency, and laundered money. Zhang Xinghua has pleaded guilty and received a two-year sentence, while one of the other two has fled.
GateNews19h ago
US crypto firm Goliath Ventures files for bankruptcy reorganization, accused of a $328 million Ponzi scheme
Florida-based crypto company Goliath Ventures has filed for Chapter 11 bankruptcy reorganization, accused of a $328 million Ponzi scheme, with over 2,000 investors affected. The former CEO has been arrested for telecom fraud and money laundering, with funds misappropriated to pay returns to early investors and for lavish spending.
GateNews03-28 13:01
LiteLLM hacking incident: 500,000 credentials leaked, cryptocurrency wallets may be stolen, how to check if you're affected?
LiteLLM has been targeted by a supply chain attack, resulting in the leak of hundreds of gigabytes of data and 500,000 credentials, affecting over 20,000 code repositories. Hackers exploited vulnerabilities in Trivy to successfully implant malicious code and steal sensitive information. It is necessary to strengthen supply chain security and access control measures to prevent similar attacks.
区块客03-28 07:55
