Insider Threat Pierces the Reserve
The narrative of a secure US “Strategic Bitcoin Reserve” faced a critical stress test this weekend. Blockchain investigator ZachXBT exposed a vulnerability in the custody chain of the government’s $28 billion stash: nepotism. According to the investigation, approximately $40 million in seized assets was siphoned from US government-linked wallets by John Daghita, the son of the President of Command Services & Support (CMDSS), a private firm contracted by the US Marshals Service (USMS) to manage digital assets.
Bitcoin (BTC) traded softly around $87,550 (-1%) as the market digested the implications of physical access vulnerabilities over protocol exploits.
The Receipt: A ‘Band-for-Band’ fumble
The breach was not discovered through a sophisticated heist, but a Telegram ego trip. The alleged perpetrator, operating under the alias “Lick,” screen-shared his wallet during a “band-for-band” wealth-measuring contest in a group chat. The screen share revealed an Exodus wallet holding $2.3 million in TRON, which ZachXBT traced back to a cluster of addresses siphoning government funds.
The investigation traces flows to a government address linked to the 2016 Bitfinex hack seizure… roughly $24.9 million moved from a US-controlled wallet in March 2024.
The on-chain trail indicates the theft wasn’t a one-time event. In addition to the March transfer, another ~$20 million was drained in October 2024. While most of the October funds were returned within 24 hours, approximately $700,000 remained missing, laundered through instant exchanges.
The Institutional Weak Link
This incident exposes a structural flaw in the US government’s custody model. While the USMS ostensibly controls the private keys to one of the world’s largest Bitcoin hoards (estimated between 198,000 and 325,000 BTC), operational reliance on third-party contractors like CMDSS creates friction points. CMDSS was awarded the contract to manage “Class 2-4” assets, typically altcoins, but the breach bled into major assets like those from the Bitfinex forfeiture.
The breach challenges the political momentum behind establishing a formal “Strategic Bitcoin Reserve.” If physical security protocols at contracted firms are porous enough for an executive’s relative to access keys, the “Digital Fort Knox” premise is effectively null.
Market Reaction
Neither the US Marshals Service nor CMDSS has issued a public rebuttal. The compromised wallets have been flagged by major compliance firms, but the $40 million loss remains a rounding error against the government’s total holdings. The real cost is reputational: custody is only as secure as the human with the password.
