Confiscated Crypto Scheme: Teen Accused of Stealing Millions

This case once again highlights the vulnerability of crypto custody systems, even within government institutions.

Son of a U.S. government contractor charged with stealing $40M in cryptocurrency

26.01.2026 - 13:10

595

3 min

Key points:

John Dagita allegedly stole more than $40 million from U.S. government wallets holding confiscated cryptocurrency by exploiting his father’s privileged access at contractor firm CMDSS.
Blockchain investigator ZachXBT traced suspicious transactions and linked the suspect to a series of thefts that may total as much as $90 million.

A high-profile digital asset crime has unfolded in the United States. John Dagita, known online under the alias Lick, is suspected of stealing more than $40 million from government-controlled wallets holding confiscated cryptocurrency.

A key role in the case was played by his father’s position as head of CMDSS, a Virginia-based company. In 2024, the firm entered into an official contract with the U.S. Marshals Service (USMS) to help manage seized crypto assets.

How the Theft Was Carried Out

According to case materials, Dagita used his connections within his father’s company to gain access to private wallet keys. While the full details of the scheme have not yet been disclosed, blockchain analyst ZachXBT identified at least $23 million transferred to a single address. The analyst estimates that this wallet may be linked to a broader theft operation totaling more than $90 million between 2024 and late 2025.

Source: X.com

CMDSS responded swiftly to the incident, removing its presence from X (formerly Twitter) and LinkedIn and taking down staff and team information from its corporate website.

The investigation also found that Dagita acted carelessly on Telegram, where he allegedly bragged about the stolen funds and interacted with wallets already under law enforcement scrutiny. Once the information became public, he reportedly attempted to cover his tracks by removing identifiable NFT usernames and changing his Telegram handle.

Government Contracts and Insider Risk

CMDSS is a well-established contractor with years of experience working with the U.S. Department of Defense and the Department of Justice. This level of trust has raised concerns about how much sensitive data and how many valuable assets Dagita may have been able to access before the breach was discovered.

A stranger among his own: how a police officer stole 50 BTC and tried to launder them

In the UK, an intelligence officer took possession of cryptocurrency that was seized when the Silk Road 2.0 dark web marketplace was shut down

Analysts are calling for immediate audits and full transparency to determine the true scale of the losses and assess all potential risks exposed by the incident.

Author: