Violent attacks targeting cryptocurrency holders are climbing at an alarming rate in 2025. Alena Vranova, founder of hardware wallet maker SatoshiLabs, sounded the alarm at the Baltic Honeybadger 2025 conference in Riga, Latvia.
She told the audience that these crimes—known as “wrench attacks”—involve kidnappings, physical assaults, and extortion, all aimed at forcing victims to hand over their private keys.
Vranova said that every week, at least one Bitcoiner somewhere in the world is kidnapped, tortured, extorted, or subjected to even worse crimes. She added that, contrary to the common belief that such attacks only target wealthy “Bitcoin OGs,” cases have been recorded involving kidnappings over as little as $6,000 worth of cryptocurrency and murders for $50,000 in crypto.
Industry data shows 2025 could be the most dangerous year yet. Chainalysis reports that the number of wrench attacks so far has nearly matched the worst year on record, and could double by year’s end if the trend continues.
Data leaks supercharge criminal targeting
One of the biggest drivers of the spike in violent attacks against crypto holders is the massive wave of personal data breaches from centralized services. Alena Vranova, founder of SatoshiLabs, told the Baltic Honeybadger 2025 audience that the scale of the problem is staggering: more than 80 million crypto user identities are currently exposed online, with 2.2 million of them revealing home addresses.
Most of these leaks stem from centralized cryptocurrency exchanges and wallet service providers bound by the Know Your Customer (KYC) legislation. Although adopted to prevent money laundering and other financial crimes, these rules oblige the platforms to store sensitive information such as name, telephone number, official identification, and residence address. This, in turn, is a “shopping list” for criminals who may wish to either steal or distribute the data once stolen.
The consequences are not purely academic. U.S. exchange Coinbase confirmed in May 2025 that a hack had occurred involving some customers’ names and personal information, including addresses. A month later, cybersecurity publication Cybernews discovered various databases exposing over 16 billion stolen credentials from large tech companies such as Apple, Facebook, and Google. The records contain passwords, geo locations, and personal information like the names of people who share email accounts that can be used to identify cryptocurrency investors.
Stolen personal information is now being combined with blockchain analysis tools so criminals can identify anyone with a lot of Bitcoin or other digital currencies. Once these victims are identified, targeted phishing schemes or SIM-swapping attacks can be carried out, or in the worst-case scenario, physical violence is used to pressure victims into providing their private keys. As the bull market attracts newer and often less operationally secure investors, it also leads to action by criminal organizations who view this heightened attention as a means to increase their bottom lines through theft or extortion, she said.
The growing concern is that should the cycle we have seen above repeat in unison with stronger data protection and better privacy practices, the leaking of KYC databases combined with increasing crypto valuations will hypercharge an environment where Bitcoiners are under threat worldwide.
Crypto holders step up security amid rising attacks
The cryptocurrency community is responding to the spike in violence with a new focus on physical and operational security. High-profile Bitcoiners hire private security, reinforce home protections, and use privacy tools to obscure their holdings.
In some cases, even everyday retail investors are beginning to take precautions. Industry safety advocates recommend reducing one’s public crypto profile, using non-custodial wallets, splitting holdings across multiple secure locations, and avoiding public discussion of investment size or strategy.
Experts also stress the importance of “opsec” (operational security) hygiene: using unique passwords, enabling multi-factor authentication, regularly checking if personal information has been exposed in data breaches, and staying alert for unusual contact attempts.
If the current trend holds, 2025 will surpass but potentially double the previous record for violent physical attacks against crypto holders—a sobering milestone for a technology once hailed as “digital gold.”
Don’t just read crypto news. Understand it. Subscribe to our newsletter. It's free.
