In 2024, a hacker stole around $24.9 million worth of cryptocurrency from digital wallets controlled by the U.S. government. Now, the U.S. Marshals Service, which oversees those wallets, is facing awkward questions after reports that the hacker is likely a relative of one of the agency’s subcontractors. On the latest episode of Fortune’s Crypto Playbook vodcast, which you can enjoy on Spotify, Apple, and YouTube, hosts Jeff John Roberts and Leo Schwartz discuss the incident and other hot topics in crypto.
The news of a possible insider connection to the wallet hacks emerged when a well-known security researcher, known on X as ZachXBT, reported that an individual named John Daghita had inadvertently disclosed on Telegram he controlled the stolen funds.
Daghita, whose hacker name is “Lick,” is reportedly the son of Dean Daghita, CEO of Command Services and Support (CMDSS), a Virginia-based firm that won a $4 million contract from the U.S. Marshals Service in 2024.
The contract calls for CMDSS to assist the Marshals Service, which is the primary custodian for the newly created U.S. Bitcoin Reserve, with the sale of certain types of cryptocurrency. In this capacity, CMDSS would likely have access to crypto wallets controlled by the U.S. Marshals.
ZachXBT says his findings on John Daghita are for now just allegations, and there is no definitive proof that John is the son of Dean Daghita.
Fortune sought comment from CMDSS via a phone number that the company removed from its website following the initial reports about John Daghita in January, and via a form on the site, but did not receive an immediate reply.
Brady McCarron, chief of public affairs for the Marshals Service, told Coindesk last week that an investigation into the matter is underway. The agency did not respond to repeated follow-up calls from Fortune about the status of the investigation or if the agency continues to employ CMDSS as a subcontractor.
The controversy comes after competitors of CMDSS challenged the initial decision by the Marshals Service to award the contract, claiming the firm lacked appropriate credentials from the SEC and that its employment of a former staffer from the agency created a conflict of interest. The Government Accountability Office last year concluded that the contract was not improper.
In addition to the U.S. Marshals incident, the latest edition of Fortune’s Crypto Playbook explores the so-called Spy Sheikh scandal related to President Trump’s crypto activities in the Middle East and Tether’s fast-growing gold reserves.
