Key takeaways

• Crypto security is expanding beyond digital threats, with criminals increasingly targeting individuals directly through physical coercion rather than trying to exploit blockchain vulnerabilities or hack wallets.

• The French case illustrates how attackers used a fake police raid and violence to force a Bitcoin transfer worth $1 million, bypassing encryption entirely by compelling the victim to authorize the transaction.

• Wrench attacks are rising, with criminals using threats or force instead of technical exploits. This highlights how human vulnerability can override even the most secure cryptographic systems.

• Impersonating authority figures such as police is highly effective because it combines fear, urgency and social conditioning, making victims more likely to comply without questioning the situation.

Digital defenses are no longer the only front line in crypto security. While phishing and exchange hacks have long been major threats, a growing number of thefts now bypass code entirely and target crypto holders directly.

A recent case in France highlights this shift. Attackers posing as police staged a “raid” and physically coerced a couple into transferring nearly $1 million in Bitcoin (BTC). This was not a failure of software, but a high-stakes robbery carried out through physical force.

When the victim, not the wallet, becomes the target

The incident occurred in Le Chesnay-Rocquencourt, a town near Paris, where a couple in their late 50s was allegedly assaulted inside their residence.

Here is the chronology of the incident:

• Three individuals disguised as police officers gained entry to the home.

• The couple was threatened at knifepoint.

• The husband was forced to send Bitcoin to the attackers.

• Both victims sustained injuries, and the husband was physically restrained and tied up.

• The assailants fled the scene in a vehicle.

French authorities are currently investigating the matter, with charges including armed robbery and organized criminal conspiracy.

What distinguishes this case is not only the use of violence, but the specific strategy employed.

Rather than attempting to crack encryption, the perpetrators bypassed it entirely by coercing the owner into authorizing the transfer.

Why impersonating police officers is so effective

Posing as law enforcement officials is often effective because it taps into several psychological triggers:

• Authority: People are socially conditioned to obey police directives.

• Urgency: The appearance of an official raid creates the impression that immediate compliance is necessary.

• Fear: Any resistance can seem as though it may lead to criminal consequences.

When criminals present themselves as police, victims often fail to question:

• The reason for their presence.

• The legitimacy of their demands.

• The authenticity of the entire situation.

Under stress, the impulse to obey tends to overpower the instinct to verify or question what is happening.

In crypto, this risk is even greater because a single approved transaction can move significant funds in seconds.

Did you know? The term “wrench attack” became popular in the crypto space after an online comic joked that threatening someone physically is easier than breaking encryption. It reflects a real-world shift in which attackers bypass complex systems by targeting people rather than technology.

From simulated police raid to coerced Bitcoin transfer

Unlike conventional robberies that target cash, jewelry or other tangible items, this assault specifically targeted digital cryptocurrency holdings.

The attackers’ objective was straightforward: force the victim to carry out an immediate crypto transfer.

This form of theft can be difficult to contain for several reasons: 

• Stolen funds can be transferred anywhere in the world within minutes.

• Blockchain transactions are generally irreversible.

• Once transferred, funds can be moved quickly, which can make tracing and recovery more difficult.

When the victim retains direct control over their wallet, criminals do not need to steal hardware or break through security. They only need to force the victim to approve and send the transaction personally.

Understanding wrench attacks in the cryptocurrency space

It is often far easier to threaten a person with a wrench than to try to crack their encryption.

Rather than attempting to hack a wallet, perpetrators may use:

• Threats

• Physical violence

• Other forms of coercion

These methods are used to force victims to reveal private keys or authorize the transfer of funds. Such attacks bypass even the strongest technical protections.

No matter how strong the encryption is, human vulnerability can make that security irrelevant.

Did you know? Some high-net-worth crypto holders now use “decoy wallets” with small balances. In a coercive situation, they can reveal these wallets instead of their main holdings, adding an extra layer of psychological and financial protection.

Why these attacks are becoming more frequent

Several underlying factors are driving this increase:

• Growth in self-custody: A rising number of users now hold their own private keys and manage their assets directly, making them more immediate and accessible targets.

• Visibility of high-value targets: Many cryptocurrency investors, company founders and executives maintain public profiles that make their wealth and identity relatively easy to identify.

• Advances in cybersecurity: As digital wallet security improves and remote hacking becomes more difficult, criminals are increasingly turning to the softer target, the human user.

• Instant global liquidity: Cryptocurrency enables near-instant transfers of value anywhere in the world without banks or intermediaries acting as gatekeepers.

In 2025 alone, documented cases of verified wrench attacks reportedly rose sharply, increasing 75% from 2024. Europe, and France in particular, stood out as a growing hotspot for such incidents. Financial losses reached $40.9 million in 2025, marking a 44% annual increase. While kidnapping remained the primary threat vector, physical assaults surged by 250%.

Why France has experienced a surge

France has recently recorded multiple high-profile violent crimes linked to cryptocurrency:

• Kidnappings carried out to extort cryptocurrency ransoms.

• Home invasions specifically targeting high-profile figures in the crypto industry.

• Coordinated operations by organized criminal groups aimed at stealing digital assets.

These recurring incidents point to a shift in criminal behavior:

• More deliberate efforts to identify individuals who hold cryptocurrency.

• Increased surveillance of their physical locations and daily routines.

• A growing preference for direct physical targeting over purely digital methods.

As cryptocurrency adoption continues to expand, public awareness of who owns it is also growing. Unfortunately, the physical risks associated with that visibility are rising as well.

Why criminals increasingly choose coercion over hacking

Crypto security has become increasingly strong. Hardware wallets, multisignature setups and cold storage solutions make remote hacking far more difficult.

Coercion, however, changes the equation.

Even the strongest technical protections may fail if a victim is coerced into unlocking their hardware device, revealing their credentials or authorizing a transaction.

Coercive attacks bypass cryptographic defenses entirely, target points of human access and exploit natural human reactions.

For perpetrators, this approach is often faster and more reliable than trying to break through technical defenses.

Why Bitcoin remains particularly exposed in duress situations

Bitcoin’s core architecture gives it considerable strength, but it also creates significant vulnerability when the owner is under coercion.

Its key features include:

• The ability to transfer value immediately

• The absence of any central entity capable of reversing transactions

• Permissionless, worldwide accessibility

In a situation where the holder is forced to transfer funds, these traits can result in:

• Assets being moved almost instantly

• Virtually no realistic chance of recovery

• Attackers rapidly moving funds across multiple addresses

The same qualities that give Bitcoin its independence and value also make stolen funds extremely difficult to recover once they are transferred under duress.

Did you know? Private security firms have started offering specialized protection services for crypto investors, including travel risk assessments, home security audits and digital footprint reduction strategies aimed at preventing targeted attacks.

How French authorities are responding

French law enforcement agencies are actively investigating the incident, with specialized organized crime units leading the effort.

Potential criminal charges under review include:

Although authorities are increasing enforcement in response to such incidents, these cases continue to present serious challenges because of:

• The rapid cross-border movement of stolen assets

• The pseudonymous and irreversible nature of cryptocurrency transactions

• The involvement of organized and professional criminal groups

Key security takeaways for cryptocurrency owners

This incident underscores a major shift in the nature of cryptocurrency security threats.

Protecting technical systems alone is no longer enough. Safeguarding wallets, private keys and physical devices must now be paired with strong personal security measures.

Essential protective steps include:

• Never publicly reveal or discuss the extent of your cryptocurrency holdings.

• Keep your real-world identity separate from your wallet addresses and ownership.

• Use multisignature wallets so that no single individual or compromised key can authorize transfers.

• Distribute signing authority and key control across different geographic locations or trusted parties.

Singapore’s OCBC has rolled out GOLDX, a tokenized on-chain fund that provides exposure to the LionGlobal Singapore Physical Gold Fund. The token, issued on Ethereum and Solana, targets institutional investors, hedge funds and asset managers, and can be bought with stablecoins or fiat. After subscription, the fund’s shares are delivered directly to investors’ blockchain wallets. OCBC describes the move as a milestone in its blockchain-focused strategy and a step toward bridging traditional finance with decentralized finance.

Industry data tracked by rwa.xyz shows tokenized real-world assets on public blockchains reaching a value of more than $29 billion, having risen more than 10% in the past 30 days. The broader trend underscores growing interest in on-chain access to traditional assets such as gold, real estate, and commodities.

Key takeaways

• The GOLDX token provides on-chain exposure to the LionGlobal Singapore Physical Gold Fund and is issued on Ethereum and Solana, signaling a multi-chain approach to tokenized assets for institutions.
• Investors can acquire GOLDX using stablecoins or fiat, with on-chain delivery of the tokenized fund’s exposure to their wallets after subscription.
• OCBC notes the underlying fund had about US$525 million (S$669 million) in assets under management as of April 16, according to the bank’s disclosures, highlighting the scale of the tokenized fund itself.
• OCBC’s broader footprint includes total assets estimated at about US$526 billion as of December 2025, reflecting the bank’s ongoing experimentation with blockchain-enabled financial products since its 2023 tokenized equity-linked note for accredited investors.
• Tokenized real-world assets on public blockchains are valued at over US$29 billion, up more than 10% in the last month, according to rwa.xyz, signaling sustained demand for on-chain access to traditional assets.

GOLDX: On-chain exposure to a physical gold fund

The GOLDX token is tied to the LionGlobal Singapore Physical Gold Fund, which OCBC says launched in December and has attracted institutional interest as a way to gain on-chain exposure to physical gold without the friction of traditional custody arrangements. The underlying fund’s on-chain representation is designed to appeal to Web3 ecosystem participants and high-net-worth individuals who operate within blockchain and crypto markets, according to OCBC.

OCBC’s asset management arm collaborated with Lion Global Investors and digital-asset exchange DigiFT to bring GOLDX to market. The token’s utility lies in enabling institutions to access a tangible gold reserve via a blockchain-native instrument, while settlement and ownership records run on-chain. Kenneth Lai, head of global markets at OCBC, framed the move as part of a broader corporate strategy to integrate digital assets into mainstream financial services. He said, “We believe digital assets will play an increasingly important role in financial services and our focus is on bridging traditional finance with the emerging world of decentralized finance.”

As a sign of the fund’s scale, the LionGlobal Singapore Physical Gold Fund reportedly held around US$525 million in assets as of April 16, with OCBC citing an asset base of roughly US$526 billion for the bank group as a whole in its December 2025 disclosures. The GOLDX rollout follows OCBC’s earlier experiments with tokenized investment products, including a 2023 tokenized equity-linked note issued to accredited investors, showcasing a continuing push into tokenized finance.

A broader trend: tokenized assets expanding on public blockchains

The emergence of GOLDX sits within a wider market dynamic where tokenized real-world assets are increasingly being represented on public networks. rwa.xyz tracks the sector and notes the total value of tokenized assets on public blockchains has surpassed $29 billion, with gains of more than 10% over a 30-day window. For traditional banks and asset managers, this trend offers a pathway to new liquidity channels and broader investor access, albeit with ongoing questions about custody, settlement reliability, and regulatory alignment.

OCBC’s approach with GOLDX reflects a deliberate strategy to blend regulated, traditional assets with blockchain-enabled delivery and settlement. By tying a token to a regulated gold fund and enabling on-chain trading and settlement, OCBC signals a willingness to experiment with tokenized structures that could scale if liquidity and custody arrangements meet institutional standards. The bank’s leadership has repeatedly emphasized the potential for digital assets to complement conventional finance, rather than replace it, as part of a gradual, standards-driven evolution of the sector.

For investors and builders, the GOLDX launch highlights a practical pathway for on-chain access to regulated, physical assets. It also underscores the importance of cross-chain compatibility, given the token’s presence on both Ethereum and Solana, two ecosystems with distinct liquidity profiles and security models. If GOLDX and similar instruments can demonstrate robust on-chain settlement, low friction, and clear regulatory guardrails, they could become a template for broader institutional adoption of tokenized funds in Southeast Asia and beyond.

As the market monitors this development, questions remain about scale, long-term liquidity, and how regulatory regimes will shape tokenized product design. Observers will be watching for updates on the GOLDX program, potential expansions to other asset classes, and how OCBC continues to balance its traditional banking operations with a growing portfolio of blockchain-based offerings.

Looking ahead, the pace of adoption will hinge on how well tokenized funds deliver transparent on-chain custody, reliable settlement, and standardized disclosures that satisfy institutional due diligence. Regulatory clarity—particularly around tokenized securities and on-chain fund structures—will play a decisive role in shaping the trajectory of OCBC’s blockchain initiatives and the broader market for tokenized real-world assets.

Key Highlights

• Ripple has introduced a comprehensive four-stage strategy to fortify the XRP Ledger against quantum computing risks by 2028
• The initial stage features a contingency “Q-Day” protocol designed to mandate immediate transition to quantum-secure accounts
• The second stage is currently active, with comprehensive security evaluation scheduled for completion by mid-2026
• Strategic collaboration with quantum defense specialist Project Eleven is enhancing development speed
• XRP Ledger benefits from built-in capabilities like key rotation and deterministic key generation

Ripple has released a comprehensive blueprint designed to shield the XRP Ledger from emerging quantum computing vulnerabilities. The strategic initiative encompasses four distinct stages with a completion target of 2028.

This strategic disclosure follows Google’s recent alert that quantum systems might compromise Bitcoin security with considerably less computational capacity than earlier projections suggested. Industry experts are now identifying 2029 as the potential “Q-Day” — the critical moment when quantum technology could successfully break existing cryptographic safeguards.

XRP presently holds the position as the fourth-largest cryptocurrency based on total market capitalization. According to Ripple, while the quantum risk to XRPL is genuine, it remains addressable through proper advance planning.

Whenever an XRPL account executes a transaction, the corresponding public key gets recorded on the distributed ledger. A sufficiently powerful quantum system could potentially exploit this exposed information to derive the associated private key and compromise account holdings.

Long-established accounts with extensive transaction histories face the greatest vulnerability. The extended period a public key remains visible on-chain creates additional opportunities for future quantum-based exploitation.

Stage One: Crisis Response Protocol

The opening phase functions as a contingency mechanism. Should quantum computing capabilities emerge ahead of projections, Ripple would implement a mandatory network-wide transition — traditional public-key cryptographic signatures would cease to be validated.

Account holders would need to transfer their assets to quantum-protected accounts. Ripple is investigating zero-knowledge proof technologies that would enable users to authenticate ownership of current keys without revealing sensitive information.

This approach ensures that holders maintain access to their holdings even under emergency circumstances, preventing permanent account lockouts.

Development and System Integration

Stage two is presently underway with anticipated completion during early 2026. Ripple’s cryptographic engineering division is executing a thorough security audit throughout the entire network while evaluating protective measures endorsed by the National Institute of Standards and Technology.

Ripple has established a collaborative partnership with quantum security research organization Project Eleven for validator-level evaluations and preliminary custody wallet development.

Post-quantum cryptographic systems introduce certain challenges. Expanded key sizes and signature dimensions can create additional demands on ledger resources, requiring the team to evaluate necessary architectural modifications.

Stage three is scheduled for late 2026. Ripple will start deploying quantum-resistant cryptographic signatures in parallel with current implementations on its development testing environment, enabling developers to validate new cryptographic approaches without impacting the production network.

Stage four represents the complete ecosystem transformation, planned for 2028. Ripple will submit a formal amendment proposal to the XRP Ledger community for native post-quantum cryptographic integration and initiate comprehensive network migration to quantum-resistant signature protocols.

Ripple emphasizes that XRPL possesses certain inherent strategic advantages. The platform supports native key rotation functionality, allowing users to replace compromised private keys while preserving their account identity. Its seed-based key generation mechanism also facilitates deterministic creation of new cryptographic keys.

Ripple engineer Ayo Akinyele clarified that while these capabilities don’t constitute complete post-quantum solutions, they establish a robust framework for future development. Project Eleven is presently developing a proof-of-concept hybrid post-quantum signature system specifically designed for the XRP Ledger infrastructure.

OCBC has rolled out a tokenized physical gold fund, bringing real-world asset exposure on-chain for institutional investors.

OCBC said the product was launched in partnership with Lion Global Investors and digital asset exchange DigiFT, with the GOLDX token issued on both the Ethereum and Solana blockchains. The bank stated that the token can be subscribed to using either fiat or stablecoins, with allocations delivered directly to investors’ blockchain wallets after purchase.

Institutional participation remains the core focus, with the offering designed for hedge funds, asset managers, and other large investors seeking exposure to gold through blockchain-based infrastructure. The move places OCBC among a growing list of global banks that are moving regulated financial products on-chain.

“We believe digital assets will play an increasingly important role in financial services and our focus is on bridging traditional finance with the emerging world of decentralized finance,” Kenneth Lai, head of global markets at OCBC, said in an accompanying statement. 

GOLDX provides on-chain exposure to the LionGlobal Singapore Physical Gold Fund, a vehicle launched in December that held around $525 million in assets under management as of April 16. The structure allows investors to access physically backed gold without relying on traditional settlement systems, while still maintaining a link to real-world reserves.

Interest in tokenized real-world assets has accelerated through 2026, with total value on public blockchains rising above $29 billion, marking a gain of more than 10% over the past month, according to rwa.xyz data. Gold-linked products have emerged as one of the segments drawing institutional attention, particularly as geopolitical tensions and currency concerns sustain demand for safe-haven assets.

OCBC’s latest move builds on earlier blockchain experiments, including a tokenized equity-linked note introduced for accredited investors in 2023. The bank reported total assets of about $526 billion as of December 2025, positioning it among Southeast Asia’s largest financial institutions adopting tokenization.

Large banks have been moving in a similar direction. In December 2025, JPMorgan launched a $100 million tokenized money market fund on the Ethereum mainnet via its Kinexys platform, targeting institutional cash management with near-real-time settlement. The initiative marked a step away from permissioned systems toward public blockchain infrastructure for regulated products.

Tokenized gold has also taken different forms across the market. As covered on crypto.news before, Standard Chartered-backed Libeara introduced the MG 999 fund in Singapore, offering synthetic exposure to gold rather than holding physical bullion, while combining the structure with lending to jewelry retailers.

OCBC’s approach leans on physical backing, aligning more closely with traditional fund structures while using blockchain rails for distribution and settlement. The bank said that the product is intended to attract participants from both conventional finance and crypto-native environments, particularly high-net-worth individuals and firms already operating within digital asset ecosystems.

A US senator has reportedly urged Senate Banking Chair Tim Scott to delay the markup for the crypto market structure bill until May, as banking and crypto representatives need more time to resolve disagreements over stablecoin yield provisions.

US Republican Thom Tillis of North Carolina told reporters Monday that he does not expect the Senate Banking Committee to mark up the legislation, also known as the CLARITY Act, in April and has recommended that Scott schedule it for next month, according to Punchbowl News.

Tillis, who has been leading discussions between crypto and banking members, reportedly told Scott: “It’s very important to me not to accelerate things, to hear everybody, and give them a rational basis for what we do accept.”

Continued delays have sparked concern that the CLARITY Act may not pass before the US midterms in November, an event that US Treasury Secretary Scott Bessent said could reverse momentum of the bill.

“I think if the Democrats were to take the House, which is far from my best case, then the prospects of getting a deal done will just fall apart,” Bessent said in March.

CLARITY Act cannot wait any longer, crypto group says

It comes the same day crypto advocacy group The Digital Chamber sent a letter to the Senate Banking Committee asking it to move the crypto market structure legislation forward to a Senate markup “as soon as the calendar allows.”

Related: Bessent ramps up pressure on Congress to pass CLARITY Act

The banking industry has raised concerns that allowing stablecoin yield could trigger significant deposit outflows from the traditional banking system, particularly at community banks. 

It argues that those banks may not have enough balance-sheet flexibility to absorb such outflows without relying on higher-cost wholesale funding.

Meanwhile, Coinbase CEO Brian Armstrong and others have pushed for more favorable stablecoin provisions. 

Last month, members of the banking and crypto industries were reportedly close to agreeing on enabling stablecoin rewards tied to crypto activity on third-party crypto platforms, but not for passive balances.

The Digital Chamber noted that it has now been more than 270 days since the House passed the CLARITY Act with bipartisan support.

“Clarity cannot wait,” The Digital Chamber’s government affairs director, Taylor Barr, said, adding: “More than 70 million Americans who have embraced digital assets deserve the regulatory clarity they have waited far too long for.”

Other members of the crypto industry have argued that moving the bill forward is more important than holding out for perfect terms.

Magazine: Will the CLARITY Act be good — or bad — for DeFi?