Summary:
- Garrett Dutton lost 5.9 BTC (around $420,000) after installing a fake Ledger Live app.
- The malicious app tricked him into entering his seed phrase, draining his wallet instantly.
- ZachXBT traced the stolen funds to deposit addresses linked to KuCoin.
- The incident adds to rising crypto scam losses, with the FBI reporting over $11 billion lost in 2025.
Dutton, known professionally as G. Love, revealed over the weekend that he lost his entire Bitcoin savings - around 5.9 BTC - after accidentally downloading a malicious app posing as Ledger Live from the Apple App Store. The funds, worth roughly $420,000, had been accumulated over nearly a decade as part of what he described as his retirement plan. In his own words, the moment was sudden and irreversible:
The issue wasn't a direct breach of his wallet or hardware device. Instead, it came down to a simple but devastating mistake - entering his seed phrase into a fraudulent interface. For anyone unfamiliar, a seed phrase is essentially the master key to a crypto wallet. Once exposed, it gives full control over the funds inside. Dutton later acknowledged that the scam caught him off guard despite years of experience in the space. In a follow-up message, he admitted the error while also pointing to how easy it is to slip up, even for seasoned users:
Funds Traced Within Hours, But Recovery Remains Uncertain
Shortly after the incident, blockchain investigator ZachXBT stepped in to trace the movement of the stolen Bitcoin. His findings showed that the funds had already been moved across multiple transactions and routed through deposit addresses associated with KuCoin. He stated:
While tracing offers visibility into where funds go, it doesn't guarantee recovery. In most cases, once assets are moved through exchanges or mixed across wallets, retrieving them becomes extremely difficult without cooperation from platforms and law enforcement. This situation highlights a recurring issue in crypto security. Even when transactions are transparent on the blockchain, the speed at which stolen funds are moved leaves very little time to act. Attackers often rely on this window to distribute funds quickly, making tracking more of a post-incident analysis than a recovery tool. The involvement of a major exchange also raises familiar questions around monitoring and response systems. Exchanges can flag suspicious deposits, but identifying and freezing them in real time is still a challenge, especially when transactions are broken into smaller parts.
A Wider Problem: Fake Apps and Rising Crypto Scams
Dutton's case reflects a broader trend where attackers exploit trust in official platforms like app stores to distribute malicious software. Fake versions of popular crypto apps have been circulating for years, often designed to look nearly identical to the real ones. The goal is simple - trick users into entering sensitive information like private keys or seed phrases. Once that happens, the attacker doesn't need to hack anything. Access is already granted. This case is more concerning because the app was found from the appstore. Users often assume that downloading from official stores offers a layer of protection. While platforms like Apple's App Store have review processes, no system is perfect, and some malicious apps still manage to slip through.
The timing also aligns with a broader surge in crypto-related fraud. According to a recent report from the FBI, Americans lost over $11 billion to crypto scams in 2025 alone. That figure continues to climb year over year, driven largely by phishing attacks, fake investment platforms, and impersonation schemes. In Dutton's case, setting up a new device likely created just enough distraction for the attacker's trap to work. His experience shows that even long-time participants aren't immune. Familiarity with crypto doesn't eliminate risk - it just changes the type of mistakes people are likely to make.
READ MORE : UK Man Claims Wife Used CCTV Footage to Steal $176M in Bitcoin From Hardware Wallet, Court Told