FBI and French Authorities Arrest U.S. Contractor in $46 Million Crypto Heist from Marshals Service
Saint Martin, Caribbean – In a dramatic international operation, U.S. and French law enforcement agencies have apprehended John Daghita, a U.S. government contractor accused of orchestrating one of the largest cryptocurrency thefts from federal authorities.
Daghita, whose father runs Command Services & Support (CMDSS), a Virginia-based firm with contracts to manage seized digital assets for the U.S. Marshals Service (USMS), was arrested on Wednesday night on the Caribbean island of Saint Martin. The joint raid involved the FBI and France’s elite Groupe d’Intervention de la Gendarmerie Nationale (GIGN), along with the International Cooperation Team Serious Crime Unit of the French Gendarmerie National in Saint Martin and the Gendarmerie unit from Guadeloupe.[1][2][3][4]
Joint Operation Yields Arrest and Key Evidence
FBI Director Kash Patel announced the arrest on Thursday via social media, praising the seamless collaboration between U.S. and French forces. “Last night, John Daghita – a U.S. government contractor who allegedly stole more than $46 million in cryptocurrency from the U.S. Marshals Service – was arrested on the island of Saint Martin by the French Gendarmerie’s premier elite tactical unit in a joint operation with the FBI,” Patel stated.[1][2][3][4]
Photos released by the FBI and Saint Martin police depict Daghita in handcuffs near a swimming pool, underscoring the suspect’s attempt at a luxurious hideout. Authorities seized a suitcase brimming with cash, multiple computer flash drives, and a passport during the raid, items that could prove pivotal in unraveling the theft’s mechanics.[2][3][4]
Blockchain Sleuth Cracks the Case
The breakthrough in the investigation traces back to late January 2026, when renowned blockchain investigator ZachXBT publicly exposed the theft. ZachXBT’s analysis linked $23 million in movements from USMS-associated wallets to addresses controlled by Daghita, who allegedly exploited his access through CMDSS.[1]
“In late January 2026, I exposed how John stole $46M+ in seized crypto assets from the US government by abusing access at CMDSS, his father’s company, which held a USMS contract,” ZachXBT posted following the arrest. “John then taunted me multiple times via his Telegram channel and dust attacked my public wallet address with stolen funds. Thanks for the last laugh, John.”[1]
ZachXBT’s report highlighted connections to the infamous 2016 Bitfinex hack, where 120,000 bitcoins were stolen from the Hong Kong-based exchange – one of the most significant crypto heists in history. The stolen USMS funds reportedly included assets tied to that breach, adding layers of complexity to the case.[1]
Abuse of Government Contracts
CMDSS, led by Dean Daghita, held contracts with the USMS to handle seized cryptocurrencies. John Daghita’s now-deleted LinkedIn profile listed him as affiliated with the firm, granting him privileged access to manage these high-value digital assets.[1][4]
Details on the exact method of theft remain under wraps, with officials withholding specifics on how Daghita accessed the cryptocurrency. However, the involvement of blockchain tracing underscores the growing role of on-chain forensics in modern cybercrime investigations.[1][3]
FBI Vows Continued Pursuit
Director Patel emphasized the FBI’s commitment to international cooperation in combating financial crimes. “FBI will continue working 24/7 with our international partners to track down, apprehend, and bring to justice those who attempt to defraud American taxpayers—no matter where they try to hide,” he affirmed.[2][3][4]
This arrest comes amid heightened scrutiny of cryptocurrency management within federal agencies. The USMS routinely auctions off seized digital currencies from criminal forfeitures, generating millions for the U.S. Treasury. Such breaches erode public trust and highlight vulnerabilities in handling volatile digital assets.[1]
Broader Context of Crypto Crime Wave
Daghita’s capture follows a spate of high-profile crypto-related incidents. Just weeks prior, Arizona authorities arrested two California teenagers linked to a $66 million cryptocurrency home invasion plot in Scottsdale. The minors allegedly posed as delivery drivers to assault homeowners and steal digital assets.[4]
These events occur against a backdrop of evolving U.S. crypto regulations. Recently, President Trump signed legislation establishing a framework for stablecoins, dollar-pegged cryptocurrencies aimed at providing regulatory clarity in the sector.[3]
Next Steps in Prosecution
Daghita faces extradition to the United States, where he will confront federal charges related to wire fraud, money laundering, and theft of government property. The scale of the alleged theft – over $46 million – positions this as a landmark case in federal crypto enforcement.
Prosecutors will likely leverage blockchain evidence from ZachXBT and seized USB drives to reconstruct the fund flows. Recovery efforts for the pilfered cryptocurrencies could involve collaboration with exchanges and wallet providers worldwide.
As investigations deepen, this case serves as a stark reminder of the risks inherent in digital asset custody, particularly for government entities managing billions in seized cryptocurrencies annually.