Blockchain investigator ZachXBT has alleged that the individual behind a multimillion-dollar theft of cryptocurrency from U.S. government wallets is the son of the head of a company contracted by the U.S. Marshals Service to custody seized digital assets.
According to ZachXBT’s investigation, an individual known online as “Lick,” real name John Daghita, is allegedly involved in siphoning tens of millions of dollars worth of crypto from government wallets. Furthermore, ZachXBT has alleged that Daghita is the son of Dean Daghita, the chief executive of CMDSS, a company holding a government custody contract.
Company records show Dean Daghita serves as president of Command Services & Support (CMDSS), the Haymarket, Virginia-based firm that was awarded a contract by the U.S. Marshals Service in October 2024 to assist with managing and disposing of “Class 2-4” seized cryptocurrencies, which include coins not supported by mainstream centralized exchanges.
The allegations have not been adjudicated in court, and no official charges have been announced. The Block could not reach CMDSS for comment.
The claims build on an investigation ZachXBT published on Jan. 23 that linked an individual known online as “John” or “Lick” to over $90 million in suspected illicit crypto. The investigation traced funds back to a U.S. government wallet tied to assets seized from the 2016 Bitfinex hack.
‘Band-for-band’ dispute exposes wallets
ZachXBT’s original investigation came to light after the alleged threat actor got into a recorded argument with another individual in a Telegram group chat. The dispute, known in cybercrime circles as “band for band,” involved both parties attempting to prove who controlled more cryptocurrency.
During the exchange, “Lick” screen-shared an Exodus wallet showing a Tron address holding approximately $2.3 million. An additional $6.7 million in ether was then transferred live into an Ethereum address. By the end of the exchange, roughly $23 million had been consolidated into one wallet.
Tracing funds backward, ZachXBT linked the wallet to another address that had received $24.9 million from a U.S. government address in March 2024. That government address was tied to funds seized in the Bitfinex hack, which ZachXBT first flagged in October 2024 when approximately $20 million was drained from government-controlled wallets. The majority of those funds were returned within 24 hours, though roughly $700,000 sent through instant exchanges was not recovered.
CMDSS contract faced prior scrutiny
CMDSS’s government contract has previously drawn scrutiny. The firm beat out competitors including Wave Digital Assets for the contract to handle the Marshals Service’s non-mainstream seized crypto. Wave subsequently filed a protest with the Government Accountability Office, alleging that CMDSS lacked proper licensing with the Securities and Exchange Commission and the Financial Industry Regulatory Authority.
Wave also raised concerns about a potential conflict of interest, alleging that the Marshals Service failed to properly investigate CMDSS’s employment of a former USMS official with access to nonpublic information. The GAO denied the protest, finding that the agency’s evaluation was reasonable.
A February 2025 CoinDesk report highlighted broader challenges facing the Marshals Service in managing seized crypto. According to the report, the agency could not provide even a rough estimate of its bitcoin holdings and had previously relied on spreadsheets lacking adequate inventory controls.
© 2026 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
Trade Crypto On Coinhub Exchange
Trade Crypto On Coinhub Exchange
Stay ahead of the market by turning news insights into trading opportunities. With Coinhub Exchange, you can seamlessly buy, sell, and manage your digital assets, all in one secure platform. Take advantage of real-time market insights, deep liquidity, and fast execution for your favorite cryptocurrencies. Don’t just read about it — trade crypto now!
Disclaimer
The content of this article shown by Coinhub News, powered by The Block, is for informational purposes only and should not be construed as financial, legal, tax, or investment advice. Coinhub News and its affiliates are not a licensed financial advisor, legal advisor, broker, or tax advisor, and ... should not be considered as professional advice or a recommendation to engage in any specific investment, legal decision, or financial transaction. Cryptocurrency markets are highly speculative and volatile. Readers should perform their own independent research and consult with a qualified professional before making any financial or legal decisions. The opinions expressed in this article are those of the author and do not necessarily represent the views or opinions of the Company of its affiliates. Additionally, the Company does not make any representations or warranties regarding the accuracy, timeliness, reliability, or completeness of any information in this article. By accessing this content, you acknowledge that any reliance on the information contained in this article is solely at your own risk. The Company is not responsible for any financial losses, legal disputes, or other damages that may arise from reliance on this content or from any investment or legal decisions based on the information provided. Investing in cryptocurrencies involves substantial risks, including the risk of losing your entire investment, and you should carefully consider whether it is appropriate for your circumstances.
Read more
