Teen Pleads Guilty to $13M Crypto Theft via Impersonation Scams
A Canadian teen pleaded guilty to money laundering after stealing $13M in crypto by impersonating Google and Trezor staff. He spent $1.2M on luxury cars, jets, and jewelry before being caught. Prosecutors recommend a 51–63 month sentence.
Quick Take
Stole $13M by tricking victims into thinking accounts were compromised.
Spent $1.2M on Lamborghini, private jets, and luxury living.
Pleaded guilty; recommended 51–63 months in prison.
Case highlights growing social engineering threats in crypto.
Market Impact Analysis
NeutralAn isolated social engineering scam with no systemic market implications, unlikely to move prices.
Speculation Analysis
Key Takeaways
- A Canadian teen stole $13M in cryptocurrency by masquerading as support from Google and Trezor to access victims' wallets.
- The stolen funds bankrolled a $1.2M luxury spree on cars, private jets, and jewelry across Miami and Los Angeles.
- He pleaded guilty to money laundering; recommended prison sentence is 51-63 months, with partial asset recovery.
- The case underscores how social engineering now outpaces code exploits as the top threat vector in crypto scams.
- US prosecutors recovered 53.16 BTC and 275.23 ETH valued at $3.7 million, leaving most of the $13M outstanding.
What Happened
Trenton Richard Johnston, a 20-year-old Canadian, pleaded guilty to conspiracy to commit money laundering after orchestrating a social engineering scheme that drained over $13 million in crypto from unsuspecting victims. Johnston and his co-conspirators posed as employees from Google and hardware wallet maker Trezor, tricking users into believing their accounts were compromised. In one fell swoop, they stole roughly $13 million in Bitcoin from a California victim. Earlier, they lifted $41,000 in Ether from another target. The guilty plea spares Johnston from additional wire fraud charges that could have locked him up for 40 years.
The Numbers
The scheme netted $13 million in crypto, but the conspirators burned through $1.2 million in just two months on a luxury lifestyle—think Lamborghini rentals, private jets, and designer jewelry. Authorities managed to claw back 53.16 BTC and 275.23 ETH, worth around $3.7 million, though the bulk remains missing. Johnston’s guilty plea carries a recommended sentence of 51 to 63 months, a steep fall from the decades he faced. The US prosecution also aims to seize any remaining illicit assets.
Why It Happened
This heist didn’t require a single line of code. Instead, Johnston exploited human psychology—posing as trusted tech support to manipulate victims into handing over wallet keys. Social engineering attacks are surging in crypto, amplified by AI tools that make impersonation eerily convincing. Once a victim’s trust is won, crypto’s irreversible transactions turn a brief lapse into a permanent loss. As Cyvers CEO Deddy Lavid noted, “The attacker only needs to win the victim’s trust once, for a few minutes, and the loss can be permanent.”
Broader Impact
The case spotlights a critical shift: human manipulation now rivals technical exploits as crypto’s biggest threat vector. It also fits a broader US crackdown on crypto fraud, signaling that prosecutors are getting sharper at tracing and prosecuting even the most brazen social engineering cons. For exchanges and wallet providers, the pressure is on to build better safeguards against impersonation scams. For users, the old rule holds: never share your seed phrase, no matter who’s asking.
What to Watch Next
- Sentencing date: Johnston’s final sentence could set a precedent for crypto-related social engineering cases.
- Asset recovery: Investigators may trace remaining funds linked to co-conspirators or luxury purchases.
- Industry response: Watch for exchanges rolling out new anti-impersonation features or user alerts.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
