US Marshals Probe Contractor’s Son Over $40M Crypto Theft from Seized Wallets

The Lead

The US Marshals Service (USMS) has confirmed it is investigating allegations that the son of a federal contractor stole more than $40 million in seized cryptocurrency from government-controlled wallets. The probe follows a report by on-chain investigator ZachXBT, who identified John Daghita, son of Command Services & Support (CMDSS) President Dean Daghita, as the individual behind a massive siphoning of assets intended for federal forfeiture.

The breach, which involves funds linked to the 2016 Bitfinex hack, has triggered immediate scrutiny of the USMS’s custody protocols. Patrick Witt, Director of the White House Crypto Council, acknowledged the severity of the breach with a brief statement on X: "On it."

The Receipt

The investigation hinges on evidence surfaced by ZachXBT, originating from a dispute in a private Telegram group. The suspect, operating under the alias "Lick," allegedly screen-shared an Exodus wallet during an argument to prove his wealth. The wallet contained millions in digital assets.

On-chain analysis linked this specific wallet to addresses holding government-seized crypto. Key findings include:

• The Connection: A wallet holding ~$23 million was traced back to US government addresses containing funds seized from the Bitfinex hack.
• The Stash: A separate wallet attributed to Daghita held 12,540 ETH (approx. $37.6 million at current prices of ~$3,000).
• The Troll: In a brazen move following the exposure, Daghita allegedly sent 0.6767 ETH to ZachXBT’s public wallet.

"The matter is under investigation." US Marshals Service Spokesperson

Institutional Context

This incident exposes a critical vulnerability in how the US government manages its multi-billion dollar crypto stockpile. CMDSS was awarded the contract to manage "Class 2-4" digital assets, tokens not supported by major exchanges, in October 2024.

Competitors are already leveraging the breach to demand oversight reform. Wave Digital Assets, a rival custody firm, has formally requested an investigation by the Department of Justice Office of the Inspector General (OIG), citing "repeated procurement failures" and documenting deficiencies in the USMS’s vendor selection process. The theft validates long-standing fears that outsourcing federal custody to smaller, opaque contractors introduces systemic risk.

Market Outlook

While the stolen amount is negligible relative to Ethereum’s $360 billion market cap, the security failure raises concerns about the potential for disorganized liquidation of seized assets. If custody controls are this loose, the market may need to price in unexpected supply shocks from government wallets that were previously assumed to be secure.