France has recently seen a series of kidnappings and home invasions targeting cryptocurrency holders and their families, bringing offline personal safety concerns back into the industry’s spotlight. As these incidents increase, the question of whether centralized storage of KYC data amplifies exposure risks has once again become a focal point of discussion.
Cases in France continue to increase.
Bitcoin journalist Joe Nakamoto stated that approximately 70% of known "wrench attacks" targeting crypto holders worldwide occur in France. These cases typically involve kidnapping, home invasions, extortion, and violent coercion aimed at forcing victims to surrender their private keys, wallet access, or digital assets.
French police say this trend began rising at the end of 2024, expanded in 2025, and continued into 2026. The investigations involve cryptocurrency investors, corporate executives, and their families, with multiple cases drawing significant public attention locally.
Multiple cases have drawn attention
In January 2025, David Balland, co-founder of the hardware wallet company Ledger, and his partner were kidnapped. Balland was later released, but reports state that the kidnappers severed his hand and demanded a cryptocurrency ransom.
In May 2026, Pierre Noizat, CEO of Paymium, was the victim of an attempted kidnapping in Paris; video footage showed several masked men attempting to forcibly drag his daughter into a vehicle, after which she escaped with the help of her husband.
Another case involves the wife of Sebastien Borget, co-founder of The Sandbox. According to reports, the suspects disguised themselves as delivery personnel and attacked the couple at their residence in Villenoy. Neighbors intervened after hearing cries for help, leading to the arrest of two suspects.
KYC data risks are being raised again
Nakamoto believes that the increase in attacks is related to KYC data collection. Crypto platforms store customer identity information centrally on servers, and a breach could help criminals identify potential targets.
The 2020 Ledger customer data breach is still frequently cited. At the time, the names, addresses, and email addresses of over 270,000 customers were exposed, making it a canonical case in discussions about cryptocurrency privacy and real-world security.
Jameson Lopp, CEO of Casa, said that the situation in France has become an industry warning. He believes that large databases of personal information created by financial regulatory requirements could expose Bitcoin holders to real-world risks if breached or misused.
France has arrested at least 88 people.
French investigators say that the organization of such cases varies. Some cases may be planned by individuals overseas, with young people in France recruited to carry out surveillance, kidnappings, or logistical support. French media report that some of the recent suspects arrested were minors, and many others were under the age of 20.
French National Prosecutor Vanessa Perrée stated that France has arrested at least 88 individuals in connection with the investigation. In the most recent operation, police apprehended 24 suspects linked to multiple kidnapping cases, including one attempted abduction that was preemptively intercepted by the anti-kidnapping unit.
The French Ministry of the Interior has met with representatives from the crypto industry to discuss security threats faced by investors, founders, and executives. During Paris Blockchain Week 2026, Ministerial Representative Jean-Didier Berger announced preventive measures, including the establishment of a dedicated prevention platform.
Additional information: Some custodians have implemented a "coercion password" mechanism, allowing clients to alert the platform when under duress; the platform can then freeze access or contact law enforcement.