Two California Teens Drove 600 Miles to Rob $66M in Bitcoin

Two highschool college students from San Luis Obispo County, California, are dealing with 9 felony prices every after allegedly driving greater than 600 miles to hold out a violent dwelling invasion in Scottsdale, Arizona, all to steal what they believed was $66 million in cryptocurrency.

Court docket paperwork obtained by AZFamily element how Jackson Sullivan, 17, a junior at San Luis Obispo Excessive College, and Skylar LaPaille, 16, of Morro Bay, confirmed up at a house close to 98th Avenue on Windrose Drive on the morning of January 31, wearing precise FedEx uniforms that they had bought from Amazon. They carried a field and a dolly to look convincing.

When the house owner opened the door round 10:30 a.m., the 2 teenagers allegedly pressured their approach inside, hit him, threw him to the bottom, and restrained each the person and his spouse with duct tape. They demanded entry to his Bitcoin. He denied having any.

An grownup son, who was in one other a part of the home, managed to name 911. When officers arrived, they discovered the girl screaming and the person battling one of many suspects. Each teenagers fled by the again door, bought right into a blue Subaru, and had been ultimately caught at a useless finish a brief distance away.

The theft “package” and the Sign connection

In response to the court docket paperwork, Sullivan and LaPaille had met solely a few month earlier than the incident. LaPaille instructed investigators he had been contacted by somebody going by the alias “Crimson” on the Sign encrypted messaging app, who instructed him in regards to the goal and claimed the victims held $66 million in cryptocurrency.

The handlers, recognized solely as “Crimson” and “8,” allegedly supplied the kids with $1,000 to buy provides. The pair reportedly used the cash to purchase their “theft package” at Goal and Dwelling Depot, which included zip ties, duct tape, a screwdriver, a field, and a dolly. Additionally they introduced alongside a Tracfone, apparently meant to facilitate the cryptocurrency switch.

Earlier than reaching the house, the kids stole a license plate from an identical car in Scottsdale to hide their id.

Police who searched the scene and the car additionally recovered a 3D-printed firearm, although it contained no ammunition. It stays unclear whether or not the weapon was even purposeful.

Throughout a court docket listening to earlier this month, Sullivan’s legal professional claimed his consumer had been manipulated by somebody on-line and that his mother and father had been unaware of the plan. The legal professional additionally acknowledged that the 2 suspects had been on the cellphone with a 3rd particular person, possible “Crimson,” throughout all the theft.

A mom’s warning that got here too late

Probably the most putting particulars on this case is the truth that Sullivan’s mom tried to cease the crime earlier than it occurred.

Court docket information present she discovered textual content messages on her son’s cellphone describing plans to decorate up as UPS staff, commit a housebreaking, cut up the cash, and use a Scottsdale deal with. She contacted California legislation enforcement, who relayed the tip to the Scottsdale Police Division.

However the Scottsdale police acquired the data solely after the house invasion had already taken place.

First U.S. “wrench assault” of 2026

The Scottsdale dwelling invasion has been logged as the primary “wrench assault” in america in 2026 on the general public database maintained by Jameson Lopp, co-founder and CTO of Bitcoin self-custody platform Casa. Lopp has been monitoring bodily assaults on crypto holders for over a decade.

All ten prior entries on the database for 2026 had occurred exterior the U.S., in France, Belgium, and the Philippines.

To place the development in context: Lopp’s tracker logged roughly 70 wrench assaults globally in 2025, almost double the roughly 41 recorded in 2024. Ari Redbord, international head of coverage at blockchain analytics agency TRM Labs, stated in January that the actual quantity is probably going a lot larger, since many such incidents get labeled as extraordinary robberies by native police.

On the Litecoin Summit 2025, Lopp himself had warned that roughly 25% of all documented wrench assaults are dwelling invasions, and urged crypto holders to enhance residential safety and train warning when answering doorways. The Crypto Instances had beforehand reported on that presentation, the place Lopp estimated that attackers achieve two-thirds of documented instances.

The Coinbase breach connection

Safety professionals have persistently pointed to company knowledge breaches as a key issue behind the spike in bodily assaults on crypto holders.

The 2025 Coinbase breach is a working example. Rogue customer support representatives at a third-party vendor had been bribed to entry and leak the KYC knowledge of almost 70,000 customers. The compromised info included names, cellphone numbers, e mail addresses, mailing addresses, masked Social Safety numbers, government-issued IDs, and account steadiness snapshots.

Whereas Coinbase refused a $20 million ransom demand and as a substitute supplied a $20 million bounty for info resulting in arrests, the harm was finished. That knowledge, as soon as in prison palms, primarily created a goal checklist of high-value crypto holders full with dwelling addresses.

Nick Bax, founding father of Ump.eth and member of the crypto safety alliance SEAL, attributed a lot of 2025’s wrench assaults to poor private privateness and company knowledge breaches. Then got here a second Coinbase insider breach in December 2025, the place a contractor improperly accessed knowledge on roughly 30 clients. Whereas smaller in scale, it confirmed that the insider risk downside at crypto platforms was removed from resolved.

For the Scottsdale case particularly, investigators haven’t disclosed how the nameless Sign handlers obtained the victims’ dwelling deal with or recognized their crypto holdings. However the sample suits what safety researchers have been warning about: leaked change knowledge making its method to prison networks who then recruit expendable younger folks to do the bodily soiled work.

The rising playbook: Encrypted apps, younger recruits, and focused violence

What makes the Scottsdale incident notably regarding is the operational construction behind it.

The teenagers weren’t appearing independently. They had been recruited, funded, outfitted, and guided by all the operation by nameless people who stay unidentified. The usage of Sign, an end-to-end encrypted messaging platform, makes it considerably tougher for legislation enforcement to hint the handlers.

This matches a broader sample that organized crime networks are more and more utilizing encrypted platforms to recruit younger people for high-stakes cryptocurrency robberies, particularly as a result of minors and younger adults are seen as extra expendable and tougher to hint again to the community.

Simply weeks earlier than the Scottsdale incident, three youngsters disguised as Amazon couriers entered a person’s home in England and threatened him with knives till he handed over his crypto. 

In France, a pair and their two youngsters had been overwhelmed and tied up by three people in January in what was the third main wrench assault within the nation that week alone. 

The Crypto Instances has additionally reported on how French attackers had been discovered to have bought goal lists containing the names, addresses, and capital good points of crypto traders for as little as €800 every.

The place the case stands now

Sullivan and LaPaille have been charged with 9 felonies, together with aggravated assault, kidnapping, and second-degree housebreaking. Sullivan additionally faces an illegal flight cost. Prosecutors intend to strive each youngsters as adults.

Sullivan was launched on a $50,000 cash-only bond and is at present carrying an digital monitor. LaPaille additionally had a $50,000 secured bond, although it’s unclear whether or not he has posted it.

The id of “Crimson” and “8” stays unknown. Investigators haven’t publicly acknowledged whether or not the FBI is concerned in monitoring the Sign handlers, although the cross-state nature of the crime and using encrypted communications would usually convey federal businesses into the image.

What this implies for crypto holders

The Scottsdale case is a stark reminder that for crypto holders, particularly these with vital on-chain wealth, the largest safety risk is probably not a wise contract exploit or a phishing e mail. It could be somebody knocking on the entrance door.

Safety researcher Lopp has repeatedly emphasised that the simplest method to scale back wrench assault threat can be essentially the most troublesome: don’t speak about Bitcoin whereas utilizing your actual identify or face. Don’t flaunt holdings. Don’t belief anybody with monetary particulars until you belief them, as he places it, together with your life.

For many who do maintain substantial quantities in self-custody, multi-signature setups with geographic separation of keys, time-locked vaults, and “panic wallets” that may show decoy balances beneath duress are among the many methods that companies like Casa now suggest.

However as this case exhibits, even individuals who denied having cryptocurrency weren’t spared the violence. The attackers got here ready, funded, and knowledgeable. And the individuals who despatched them are nonetheless on the market.

Additionally Learn: US Senate Pushes Crypto ATM Crackdown After $333M Lost to Scams

Disclaimer: The data researched and reported by The Crypto Instances is for informational functions solely and isn’t an alternative to skilled monetary recommendation. Investing in crypto property entails vital threat because of market volatility. All the time Do Your Personal Analysis (DYOR) and seek the advice of with a certified Monetary Advisor earlier than making any funding choices.