Hong Kong police arrested a 34-year-old network engineer accused of exploiting internal access at a crypto trading firm to transfer approximately 2.67 million USDT from about 20 customers into attacker-controlled wallets. Authorities say the case highlights insider-risk and custodian-control vulnerabilities at crypto firms.

Hong Kong authorities have detained a 34-year-old network engineer suspected of abusing privileged internal access at a cryptocurrency trading company to siphon roughly 2.67 million USDT from around 20 customer accounts into wallets controlled by the alleged perpetrator. Police statements and local reporting indicate the transfers were executed over a period of time using system privileges associated with the engineer’s role, prompting an active criminal investigation into unlawful transfer, theft, and potential accomplices. Investigators emphasized the incident illustrates persistent insider-risk exposures at custodial crypto firms where employees with network or operational privileges can manipulate account balances or withdrawal processes. Law enforcement and industry observers called for strengthened segregation of duties, enhanced monitoring of privileged accounts, multi-party transaction approvals for significant transfers, and improved real-time anomaly detection. The suspect remains in custody as authorities continue forensic analyses of transaction trails and device data to identify recovered funds or additional victims. The case has reignited discussions in Hong Kong about regulatory expectations for custodial security and incident reporting standards for firms handling customer digital assets.