$282M Lost in Crypto Scam Using THORChain & XMR Swap

A victim lost $282M in BTC and LTC via a hardware wallet scam. Funds were moved through THORChain and swapped into ETH, XMR, XRP, and LTC.

Isolde Verne January 17, 2026 - 12:41 PM

News

$282M in BTC and LTC stolen via hardware wallet phishing.
Funds were swapped into XMR, ETH, XRP, and LTC.
THORChain used to obfuscate and reroute assets.

Massive $282M Scam Exposes Crypto Security Risks

According to blockchain investigator @zachxbt, a devastating $282 million crypto theft has rocked the community. The victim reportedly lost a massive amount of Bitcoin (BTC) and Litecoin (LTC) through a sophisticated social engineering attack tied to a hardware wallet scam.

This incident is one of the largest personal crypto thefts to date, and it raises fresh concerns about wallet safety, phishing tactics, and asset laundering across decentralized networks.

The attacker cleverly avoided detection by moving the stolen funds through privacy-centric and cross-chain platforms — making recovery and traceability difficult.

How the Attacker Laundered the Crypto

After draining the funds, the attacker began converting the assets to avoid tracking. A significant portion of the stolen BTC and LTC was converted into Monero (XMR) — a privacy-focused cryptocurrency. This triggered a sharp spike in XMR’s price, likely due to the large volume of buys.

The laundering didn’t stop there. The attacker leveraged THORChain, a decentralized cross-chain liquidity protocol, to execute the following swaps:

818 BTC (~$78 million) converted into:
- 19,631 ETH (~$64.5 million)
- 3.15 million XRP (~$6.5 million)
- 77,285 LTC (~$5.8 million)

By using THORChain, which allows asset swaps without centralized exchanges, the attacker avoided traditional Know-Your-Customer (KYC) processes and increased the complexity of tracing the funds.

According to @zachxbt, a victim lost over $282M worth of $LTC and $BTC in a hardware-wallet social engineering scam.

The attacker swapped part of the $LTC and $BTC into $XMR, triggering a sharp spike in $XMR's price.

The attacker also used #THORChain to swap 818 $BTC($78M) into… pic.twitter.com/7PExjntkbT
— Lookonchain (@lookonchain) January 17, 2026

Security Takeaways for Crypto Holders

This incident highlights a chilling truth: even hardware wallets are not foolproof if users fall for phishing or social engineering attacks.

Key takeaways include:

Never share seed phrases or recovery information, even with “support staff.”
Double-check domain names and verify sources before interacting.
Enable passphrases and secure backups for added protection.
Be cautious of unsolicited wallet firmware updates or requests.

As attackers become more sophisticated, the community must stay vigilant. This case also demonstrates how privacy coins and decentralized swapping protocols can be double-edged swords — empowering users, but also shielding bad actors.

Read Also:

Disclaimer: The content on CoinoMedia is for informational purposes only and does not constitute financial, investment, or legal advice. Cryptocurrency investments carry risks, and readers should conduct their own research before making any decisions. CoinoMedia is not responsible for any losses or actions taken based on the information provided.

Massive $282M Scam Exposes Crypto Security Risks

How the Attacker Laundered the Crypto

Security Takeaways for Crypto Holders

Read Also:

Isolde Verne

China Injects ¥1.85T Liquidity — Markets Turn Bullish

Related Articles

Bitmine Buys $65M in ETH Amid Market Momentum

One Year of $TRUMP: The Meme Coin That Shook Crypto

ZKP Shows Growing Momentum With 100x ROI Projections: Is It the Top Crypto to Buy in 2026?

BlockDAG Rewinds to $0.001 – A 50× Window With Just 10 Days Left: Is This the Highest ROI Crypto of 2026?