QUADRIGA INITIATIVE
CRYPTO WATCHDOG & FRAUD RECOVERY PLATFORM
A COMMUNITY-BASED, NOT-FOR-PROFIT
$100 000 USD
JANUARY 2025
GLOBAL
NONE
DESCRIPTION OF EVENTS
"Based in France, Ledger is the largest cryptocurrency hardware wallet company." "Ledger is a hardware cryptocurrency wallet that is used to store, manage, and sell cryptocurrency. The funds held in these wallets are secured using a 24-word recovery phrase and an optional secret passphrase that only the owner knows."
"Ledger offers two products, the Nano S and Nano X, that can store the digital keys used to secure crypto wallets. The devices can be used with a variety of cryptocurrencies, are compatible with numerous apps, and are supposed to offer a safe way to manage crypto without compromising too much on convenience. Ledger says on its website that it has sold 1.5 million products to customers in 165 countries to date."
The kidnappers demanded a ransom of 100 BTC (~$10M) and, to prove the seriousness of their threat, sent a severed finger from Balland to his associates. This gruesome act showed the level of violence used to enforce the ransom.
While the criminals initially demanded a ransom of 100 BTC (approximately $10 million), the actual amount lost was minimal due to the swift intervention of law enforcement and the cryptocurrency industry.
95% of the ransom funds were frozen almost immediately, thanks to a coordinated effort between law enforcement, stablecoin issuer Tether, and cryptocurrency exchanges. This meant that the criminals were unable to access most of the funds. The remaining funds that were not frozen were likely a small portion of the ransom, but the precise amount that was ultimately lost is not fully disclosed.
In short, the losses were limited due to the fast and effective action that blocked the majority of the ransom payment. The criminals were essentially unable to benefit from the Bitcoin ransom, and most of the funds were recovered before they could be transferred.
There was a swift and highly coordinated response from both law enforcement and the cryptocurrency industry. Once the ransom demand was made and the kidnappers sent the severed finger as proof of their seriousness, the authorities quickly mobilized to track down the criminals and rescue the victims.
Law enforcement in France, particularly the GIGN (elite tactical unit), immediately began investigating the case. They used traditional methods, such as tracking stolen vehicles and tracing phones, while also leveraging digital tools to track the criminals' movements. They acted with precision, culminating in the rescue of David Balland and his wife from separate locations within 48 hours of the kidnapping.
Although cryptocurrencies like Bitcoin are often considered irreversible, the involvement of intermediaries such as exchanges and stablecoin issuers allowed the authorities to intervene and track the funds.
One of the most important technical responses came from the coordination between Tether, cryptocurrency exchanges, and law enforcement. Thanks to these efforts, 95% of the ransom was frozen before the criminals could access it. This was achieved by sending freeze requests to the platforms the criminals used to transfer the stolen funds. The rapid response meant that, despite the criminals using Bitcoin to carry out the ransom, the funds were quickly blocked, demonstrating that intermediaries can still control the flow of cryptocurrency in certain situations.
In addition to the actions of law enforcement, private security and industry leaders also played a significant role. Nicolas Bacca, former CTO of Ledger, had developed a system that allowed for rapid freezing of ransom funds through coordination with exchanges and stablecoin issuers. This system was pivotal in responding quickly to the crisis and limiting the criminals' access to the ransom money. The involvement of both private security firms like SEAL 911 and industry experts showed the importance of a collective response in these high-profile situations.
Digital forensics and tracking were also key to locating the criminals. Authorities used tools like WhatsApp account tracing to follow the perpetrators' movements, which led them to the location of the victims. Traditional law enforcement methods, including tracking stolen cars and phones, combined with digital tracking, helped authorities locate Balland and his wife. Law enforcement acted swiftly, launching two rescue operations conducted by GIGN, France's elite tactical unit. The criminals were apprehended, and most of the ransom funds were successfully frozen.
The Balland kidnapping highlights a critical paradox in the cryptocurrency space. While cryptocurrencies are often touted as irreversible and uncensorable, intermediaries like exchanges and stablecoin platforms can still play a role in freezing assets when criminal activity is detected. This case serves as a reminder that, despite the decentralized nature of cryptocurrencies, centralized entities can still intervene to prevent financial crime.
David Balland, co-founder of Ledger, was kidnapped along with his wife by criminals demanding a $10 million ransom in Bitcoin, and sent one of Balland's severed fingers as proof. Thanks to a swift and coordinated response from law enforcement and the cryptocurrency industry, 95% of the ransom funds were frozen before the criminals could access them. This was achieved through collaboration with exchanges and stablecoin issuers like Tether. The criminals, aged between 20 and 40, were part of a gang involved in the crime. They are now facing life imprisonment for their actions.
Rekt - Blood on the Blockchain (Feb 4)
@PixOnChain Twitter (Feb 4)
@BTChip Twitter (Feb 4)
@iancr Twitter (Feb 4)
@TheBigWhale_ Twitter (Feb 4)
@0xLouisT Twitter (Feb 4)
Ledger Live : Most trusted & secure crypto wallet | Ledger (Feb 13)
@gregory_raymond Twitter (Feb 4)
$100M Ledger Kidnapping: How Crypto Millionaires Became Crime Targets (Feb 4)
Nicolas Bacca: "We have invented a unique organisational model for intervening in cryptocurrency ransom" (Feb 4)
@Oldbuck_Mcgee Twitter (Feb 4)
