The first address is very typical for the deposit address of a centralised exchange (CEX): only used once, ADA arrives and is completely sent further, where the second transaction also collects deposits from other addresses and forwards them all together to one central address with lots of transactions.
The centralised exchange is not the scammer. It was just used by the scammer to cash out. (One could see some responsibility/liability of them for lax KYC processes etc., but they have lots of money for good lawyers.)
They probably did not buy the $credit.pay handle deliberately, but just got it accidentally by one of their customers (or that customer wanted to get rid of it).
So, you could try if Kraken is willing to help you track down the attacker. You’d maybe want a lawyer or your local law enforcement authorities to help you with that.
How can this happen?
Maybe you gave away or leaked your seed phrase somewhere.
Maybe some malware grabbed the encrypted keys from your computer and brute-forced or also grabbed the spending password for it.
In the last days, we had some users who had their seed phrases in LastPass which was famously hacked back in December 2022. Quite possible that someone has broken the passwords from that hack and targets Cardano users now.
@buvrgm i am sorry for your loss, @HeptaSean might be right with the leaks.
just our of curiousity, can i ask you: “with crypto holdings of around $35000, why have you not stored your ada on a hardware wallet? which costs less than $100.”
I am sorry about your stolen ADA. This forum post provides links to web forms that display the Cardanoscan API end point responses in list format: Cardanoscan API (Free) - #6 by BUDDYM They might help you with documenting the trail of transactions. Good luck with the recovery. Hopefully, something good will come out of this. Cheers!
