A viral YouTube video this week revealed how an American investor lost 1.2 million XRP, worth about $3.05 million, from his Ellipal wallet. The story quickly spread across the crypto community due to both its size and the way it exposed a serious problem within the digital asset world: confusion between wallet types and product designs.
Blockchain researcher ZachXBT traced the movements of the stolen XRP and discovered how efficiently the money moved across networks before disappearing into global money laundering channels.
How the theft unfolded
On October 12, 2025, the attacker performed more than 120 Ripple-to-Tron swaps using a service called Bridgers, formerly known as SWFT. To blockchain researchers, the transactions appeared as Binance-linked because Bridgers uses the exchange’s liquidity.
By October 15, the money had been completely laundered through over-the-counter networks connected to Huione, an illegal online marketplace in Southeast Asia. Huione has been involved in laundering billions through online scams, human trafficking and large-scale crypto fraud.
Recently, US authorities imposed additional restrictions on Huione in connection with the $15 billion seizure of the Prince Group, intensifying efforts to curb illicit financial activities in the region.
The wallet confusion that cost millions
What makes this case particularly alarming is that it was not a sophisticated hack, but a mistake. The victim thought they were using the Ellipal cold wallet, which stores crypto assets offline. In reality, they were using a hot wallet connected to the internet, making it vulnerable to compromise.
This kind of confusion is common. Many crypto companies offer both custodial and non-custodial wallets under the same brand, which often causes users to misunderstand how their funds are stored.
There have also been many cases of impersonation, where victims have been tricked into placing their coins into fake security wallets or support accounts after being contacted by people posing as official crypto platforms.
Gaps in law enforcement
After realizing the loss, the victim struggled to ask U.S. police for help. Despite the scale of the theft, it was difficult to find an agency with the right expertise to investigate. Many departments are overwhelmed by the growing number of crypto-related crimes.
Countries such as the United States, the Netherlands, Singapore and France tend to respond more quickly, but the outcomes are highly dependent on the individual officials handling the case. Pursuing civil recovery, especially across borders, often becomes very costly and time-consuming.
The case also exposes a lack of victim support within the XRP community. While networks like Bitcoin, Ethereum, and Solana have strong public channels for reporting theft, Ripple’s ecosystem remains more fragmented.
Trust CoinPedia:
CoinPedia has been providing accurate and timely cryptocurrency and blockchain updates since 2017. All content is created by our expert panel of analysts and journalists, following strict editorial guidelines based on EEAT (Experience, Expertise, Authoritativeness, Trustworthiness). Each article is fact-checked from reputable sources to ensure accuracy, transparency and reliability. Our review policy ensures unbiased evaluations when recommending exchanges, platforms or tools. We strive to provide timely updates on everything crypto and blockchain, from startups to industry majors.
Investment disclaimer:
All opinions and insights shared represent the author’s own views on current market conditions. Please do your own research before making any investment decisions. Neither the writer nor the publication accepts responsibility for your financial choices.
Sponsored and Ads:
Sponsored content and affiliate links may appear on our site. Ads are clearly marked and our editorial content remains completely independent from our advertising partners.