The Biggest Bitcoin Heists In History

The story of Bitcoin is not just one of astronomical gains and technological breakthroughs—it’s also a gripping saga of the biggest heists in history, where billions of dollars have vanished into the digital ether, often in mere minutes.

These aren’t your regular bank robberies. There are no ski masks, no getaway cars, no dramatic hostage situations. Instead, the biggest bitcoin heists in history unfold in milliseconds through sophisticated code exploits, social engineering masterstrokes, and security vulnerabilities that would make Hollywood scriptwriters jealous.

The Biggest Bitcoin Heists in History

1. Mt. Gox Collapse (2014)

The Mt. Gox disaster stands as the most infamous and consequential. Once handling approximately 70% of all bitcoin transactions globally, the Tokyo-based exchange collapsed in spectacular fashion in 2014, revealing a security nightmare that had been unfolding for years.

Between 2011 and 2014, hackers systematically drained Mt. Gox of an estimated 850,000 BTC—744,408 belonging to customers and approximately 100,000 owned by the company itself. At the time of discovery, this represented roughly 7% of all BTC in existence and was valued at approximately $450 million at that time.

The theft wasn’t a single breach but rather a prolonged attack that went undetected for years due to poor security practices and inadequate record-keeping. When Mt. Gox filed for bankruptcy in February 2014, it sent shockwaves through the digital currency community and nearly shattered confidence in Bitcoin entirely.

Investigators later discovered that Mt. Gox had been hemorrhaging bitcoin for years through multiple security vulnerabilities. The exchange was initially created as a platform for trading playing cards; “Magic: The Gathering Online cards” before being repurposed for Bitcoin in 2010—a foundation that proved woefully inadequate for securing hundreds of millions of dollars in digital assets.

After more than a decade of legal proceedings, creditors are finally beginning to receive repayments in 2024-2025, though many will receive only a fraction of what their bitcoin would be worth today.

According to the bankruptcy trustee, the repayment process is currently in progress; however, it necessitates verification and coordination with partner exchanges for payment.

Important aspects of the process include:

• Deadline: refunds to creditors are scheduled to be complete by October 2026.
• Payment categories: Refunds will be made in Bitcoin (BTC), Bitcoin Cash (BCH), and fiat currencies (USD, JPY, EUR).
• Registered creditors: Thousands of investors worldwide have already filed claims, but others still have time to apply.
• Transparent management: each stage of the refund process is supervised by the bankruptcy trustee.

Claim forms were supposed to be turned in by October 2025, but the deadline was pushed back to December 2025. This shows that the process is still going on, funds are available, and the trustee plans to handle repayments in a controlled and legal way.

2. The Bitfinex Heist (2016)

On August 2, 2016, hackers breached Bitfinex’s security systems and fraudulently authorized over 2,000 transactions, stealing 119,754 BTC worth approximately $72 million at the time. By the time U.S. authorities recovered a significant portion of the funds in February 2022, the Bitcoin had appreciated to an astonishing $3.6 billion. At today’s values, the original theft would exceed $11 billion.

What makes this case particularly fascinating is that the perpetrators—Ilya “Dutch” Lichtenstein and his wife Heather “Razzlekhan” Morgan—were eventually caught through amateurish mistakes. Despite successfully executing one of the most sophisticated exchange hacks in history, their subsequent money laundering attempts left a digital trail that federal investigators were able to follow.

Authorities recovered approximately 94,643 of the stolen BTC by decrypting a file containing private keys and wallet addresses associated with the theft. Both Lichtenstein and Morgan pleaded guilty to money laundering conspiracy charges in 2023, with Lichtenstein receiving a five-year prison sentence for his role in the hack.

In January 2025, a U.S. federal court ruled that the recovered bitcoin should be returned to Bitfinex “in kind”—meaning as BTC rather than cash equivalent. This decision was particularly significant given Bitcoin’s massive appreciation since the theft.

3. Binance (2019)

On May 7, 2019, Binance revealed it had suffered a “large scale security breach” that resulted in the theft of 7,000 BTC valued at approximately $40 million at the time.

The hackers employed a comprehensive strategy combining phishing, viruses, and social engineering to compromise Binance’s hot wallet. In a single transaction, the attackers drained 7,000 BTC, demonstrating both patience and technical sophistication in their approach.

What distinguished this incident from other entries among the biggest Bitcoin heists in history was Binance’s response. The then CEO of Binance; Changpeng “CZ” Zhao immediately halted all withdrawals and deposits, conducted a thorough security review, and committed to fully compensating all affected users from Binance’s Secure Asset Fund for Users (SAFU).

Binance absorbed the entire $40 million loss, demonstrating the importance of maintaining emergency reserves. The exchange’s transparent communication and swift action helped maintain customer confidence despite the breach. This incident proved that while even the most sophisticated platforms can be targeted, proper preparation and customer-first responses can mitigate long-term damage.

4. NiceHash (2017)

On December 6, 2017, “highly professional” hackers infiltrated NiceHash’s payment system and stole approximately 4,736 BTC from the company’s wallet, valued at around $64 million at the time. The Slovenian-based platform, which connected people wanting to sell processing power with those wanting to mine digital currencies, was forced to halt operations immediately.

The timing of the attack was particularly devastating—occurring just days before major Bitcoin futures exchanges were set to open in the United States, and during a period of unprecedented mainstream interest in digital currency. The hack temporarily dampened the euphoric market sentiment and raised questions about the security of third-party mining services.

NiceHash confirmed that funds from users’ BTC wallets were stolen and immediately launched a comprehensive security investigation. While the company eventually resumed operations and worked to compensate affected users, the incident highlighted vulnerabilities in mining marketplace infrastructure that extended beyond traditional exchange security.

5. Bitstamp (2015)

In January 2015, hackers executed a sophisticated, weeks-long phishing campaign targeting six Bitstamp employees. The attack ultimately succeeded in compromising the Luxembourg-based exchange’s operational wallets, resulting in the theft of approximately 19,000 BTC valued at around $5 million at the time.

What made this hack particularly instructive was the methodical approach taken by the attackers. Rather than exploiting technical vulnerabilities, they focused on the human element—sending carefully crafted phishing messages via Skype that appeared to be legitimate business communications. Once an employee’s credentials were compromised, the hackers gained access to systems managing the exchange’s hot wallets.

Bitstamp’s response included immediately freezing customer deposits and withdrawals while conducting a comprehensive security review. The company successfully relaunched with enhanced security measures and ultimately compensated affected users, demonstrating that transparent crisis management could help an exchange survive even catastrophic breaches.

6. Bitcoinica’s Double Tragedy (2012)

Few stories are as tragic as Bitcoinica—a platform that suffered not one, but two separate major hacks in 2012, ultimately leading to its complete collapse.

In March 2012, web hosting provider Linode’s servers were compromised, resulting in the theft of 43,000 BTC from Bitcoinica—valued at approximately $228,845 at the time but representing a devastating loss for the young exchange founded by then-17-year-old Zhou Tong. 

Incredibly, Bitcoinica was hacked again just two months later in May 2012, losing another 18,547 BTC valued at roughly $90,000 by that time. The repeated breaches exposed fundamental security flaws in early Bitcoin exchange infrastructure and highlighted the dangers of relying on third-party hosting services without adequate security controls.

Bitcoinica never recovered from these attacks and shut down permanently, with legal battles over customer fund recovery dragging on for years.

Common Vulnerabilities Exposed

Analyzing the biggest bitcoin heists in history reveals several recurring vulnerabilities that have enabled these massive thefts:

1. Hot Wallet Overexposure

The most common factor across the biggest bitcoin heists in history is excessive reliance on hot wallets—internet-connected storage that facilitates quick transactions but provides attackers with online access points.

2. Human Factor Exploitation

Social engineering, phishing campaigns, and insider threats have played crucial roles in many of the biggest bitcoin heists in history. The Bitstamp hack and various other breaches demonstrate that technical security measures are only as strong as the humans implementing and managing them.

3. Private Key Compromise

Whether through phishing, social engineering, or insider threats, private key compromises are the skeleton keys that unlock the biggest bitcoin heists in history. Once attackers obtain these cryptographic credentials, they have complete control over the associated wallets—and there’s no “forgot password” option to recover control.

4. Inadequate Security Infrastructure

Many early exchanges, including Mt. Gox, were built on platforms never designed to secure hundreds of millions of dollars. The rush to capitalize on Bitcoin’s growth often came at the expense of proper security architecture, comprehensive audits, and industry best practices.

5. Delayed Detection

Several of the biggest bitcoin heists in history went undetected for days or even years. The Ronin hack wasn’t discovered for six days; Mt. Gox’s losses accumulated over years. This detection lag allows hackers to cover their tracks and move stolen funds through complex laundering operations.

Protecting Yourself

For individual BTC holders, the lessons from the biggest bitcoin heists in history translate into practical security measures:

1. Use hardware wallets (cold storage) for long-term holdings.
2. Enable all available security features including two-factor authentication and withdrawal whitelists.
3. Distribute holdings across multiple wallets to limit exposure.
4. Choose exchanges with strong security track records and proof-of-reserve transparency.
5. Never share private keys or seed phrases with anyone, ever.
6. Be vigilant against phishing attempts that mimic legitimate platforms.
7. Keep only trading amounts on exchanges, moving larger holdings to personal custody.
8. Stay informed about security breaches in the Bitcoin ecosystem

Moving Forward

The biggest bitcoin heists in history have cost billions and affected millions of people. Yet they’ve also accelerated the maturation of an industry that promises to revolutionize global finance. As security measures improve and stakeholders learn from past catastrophes, the ecosystem becomes more robust—though eternal vigilance remains the price of digital asset security.

The heists detailed here won’t be the last. New vulnerabilities will emerge, and determined attackers will exploit them. But armed with knowledge, the Bitcoin community is better prepared than ever to face whatever threats tomorrow may bring.