$243M Genesis Heist: Suspect “Danny Meech” Detained in Dubai?

Researcher ZachXBT has stated that a British national implicated in the major $243 million cryptocurrency breach involving lender Genesis may have been detained in Dubai. According to him, the individual in question is known by the aliases Danny, Meech, and Danish Zulfiqar (Khan).

ZachXBT indicated that the suspect was likely arrested by local authorities and that the crypto-assets associated with him were seized. He drew attention to approximately $18.58 million in digital assets held in a particular Ethereum wallet, emphasizing that several addresses he had been monitoring had previously consolidated funds into this wallet in a manner consistent with typical confiscation patterns.

The analyst further noted that Danny “was last seen in Dubai” and that “raids were reportedly conducted at the villa where he may have been staying.” Individuals who had been in contact with the suspect abruptly ceased responding, reinforcing suspicions of possible investigative actions. At the same time, UAE authorities have not confirmed any arrests, raids, or seizures, and local media have published no reports on the matter.

The story traces back to one of the largest known thefts from a private cryptocurrency holder. In August 2024, 4,064 BTC—valued at roughly $243 million—were stolen from Genesis, a lender operating through the Gemini interface. According to ZachXBT, three perpetrators, posing as Google support staff, convinced the victim to reset two-factor authentication, gained remote access, then obtained the private keys and emptied the wallet. The stolen Bitcoin was later funneled through a series of exchanges and mixers to obscure its origins. The researcher linked the online aliases “Greavys,” “Wiz,” and “Box” to Malone Lam, Veer Chetal, and Jeandiel Serrano, forwarding his findings to law enforcement.

In the months that followed, U.S. prosecutors began to expose the broader network of interconnected cases. In September 2024, the Department of Justice charged two participants in the alleged $230 million scheme, and later released more extensive materials outlining a criminal group that, according to investigators, orchestrated the theft of more than 4,100 BTC from Genesis.

The filings described social engineering, SIM swapping, and even physical intrusions to obtain access to devices and authentication mechanisms. Prosecutors contend that the perpetrators spent the stolen funds on luxury cars, travel, and nightlife, and that one participant, Chetal, was involved in an additional $2 million theft while out on bail.

Central to the current intrigue is the Dubai connection—repeatedly noted by ZachXBT—who has linked the emirate to the residences or transit routes of actors involved in previous crypto-thefts. For now, it remains unclear whether any operations have indeed taken place, or whether the reports stem solely from unverified private sources.

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee PayPal Crypto

USDT (TRC20):

TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm Copy

USDT (ERC20):

0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce Copy