Researchers estimate that between 3 and 4 million Bitcoin, roughly 15 to 20% of all that will ever exist, are permanently inaccessible. The coins still exist on the blockchain. They will never move. They are secured by the most robust cryptographic system ever built, sitting in addresses whose private keys are gone forever: on dead hard drives, in forgotten passwords, locked inside companies whose founders are dead.

The stories behind those lost coins are instructive. Not as cautionary tales to be pitied at a distance, but as specific failure modes, each one a pattern that still repeats today, and each one preventable with the right approach.

James Howells: 8,000 Bitcoin in a landfill in Newport, Wales

8,000 BTC Lost: 2013 · Newport City Council landfill, Wales

In 2009, James Howells was an IT worker in Newport, Wales who mined Bitcoin when almost no one was paying attention. Bitcoin was worth fractions of a cent. He accumulated 8,000 BTC on a laptop hard drive, an unremarkable file in an unremarkable folder on a machine he used for everything else.

In 2013, Howells cleaned out his office. He had two identical hard drives on his desk. One contained his Bitcoin wallet. One did not. He threw one away. He threw the wrong one.

The hard drive went into a bin bag, then a skip, then the Newport City Council landfill site where it has been buried ever since. At the time, 8,000 BTC was worth approximately £500,000. At Bitcoin's 2021 peak, it was worth over £270 million. As of early 2026, it is worth hundreds of millions of pounds.

Howells has spent years trying to get permission to excavate the landfill. He has offered Newport City Council a share of the recovered coins, at various points amounting to tens of millions of pounds. The council has repeatedly refused, citing environmental regulations, cost, and the technical improbability of recovery. The hard drive, if it has not been physically destroyed by years of waste compaction, contains a wallet.dat file that would unlock the entire holding.

The failure mode

No backup. No redundancy. Single point of failure. The entire holding existed on one physical device, with no copy elsewhere. The moment that device was lost, the Bitcoin was gone. A second copy of the wallet file on any other medium (another drive, an encrypted cloud backup, a written seed phrase) would have prevented the loss entirely.

Stefan Thomas: 7,002 Bitcoin and two password attempts remaining

7,002 BTC Inaccessible since ≈ 2012 · San Francisco, California

In 2011, a Bitcoin enthusiast commissioned a short animated video explaining how Bitcoin works. The creator was Stefan Thomas, a German-born programmer then living in San Francisco. He was paid 7,002 BTC for the work, a few hundred dollars' worth at the time.

Thomas stored those Bitcoin on an IronKey, a high-security hardware-encrypted USB drive. The IronKey is designed for corporate and government use: it encrypts its contents using AES-256 and, after ten incorrect password attempts, permanently encrypts itself, making the contents irrecoverable. This is a security feature.

Thomas forgot his password.

He has tried eight times. He has two attempts remaining. If he uses both incorrectly, 7,002 Bitcoin will be permanently inaccessible. In a 2021 New York Times interview, he described spending days staring at the IronKey, trying password after password in his head before committing to an attempt. "I would just lay in bed and think about it," he said. "Then I would go to the computer with some new strategy, and it wouldn't work, and I would be desperate again."

Thomas has worked with data recovery specialists and cryptographers. He eventually contracted with a company called Unciphered, which claimed to have found a hardware vulnerability in the IronKey — but their attempts reportedly did not succeed in recovering the funds. The IronKey sits in a secure location, two wrong guesses from permanent destruction of the key.

The failure mode

A single point of access with no recovery mechanism. The IronKey is an exceptional device precisely because it cannot be brute-forced. But that security guarantee requires that the password is itself stored: written down, memorised in multiple ways, or stored in a separate secure location. Thomas's mistake was not using an IronKey. It was relying on memory alone to retain access to it. A properly documented seed phrase or password backup, stored securely, makes this scenario impossible.

Gerald Cotten and QuadrigaCX: $190 million in customer funds, gone

$190M+ CAD · Customer funds lost · QuadrigaCX, 2019

QuadrigaCX was Canada's largest cryptocurrency exchange. Founded by Gerald Cotten and Michael Patryn, it had over 76,000 customers and held hundreds of millions of dollars in crypto assets at its peak. Cotten handled the exchange personally — including, critically, the private keys to the cold wallets holding customer funds.

On December 9, 2018, Gerald Cotten died in Jaipur, India. He was 30 years old. The official cause was complications from Crohn's disease.

Within weeks, QuadrigaCX informed customers that it was unable to access approximately C$190 million in assets because Cotten was the only person who held the passwords to the cold wallets. His laptop, which held the keys, was encrypted. His death had effectively locked the funds forever.

What followed was one of the most complex and murky cryptocurrency fraud investigations in history. The Ontario Securities Commission conducted a lengthy investigation and concluded that QuadrigaCX had been operating fraudulently for years. Cotten had been using customer deposits to fund personal trading, covering withdrawals with new deposits — a classic Ponzi structure. By the time he died, there was a massive shortfall. The cold wallets that supposedly held customer funds were largely empty.

His death — whether genuine or, as some have alleged, staged — represented the final act of a fraud. Some 76,319 customers are still recovering fractions of their original holdings through bankruptcy proceedings. Many recovered nothing meaningful.

The failure mode

Trusting a third party with no transparency, no accountability, and no audit. QuadrigaCX customers had no ability to verify that the exchange was solvent. They had no independent confirmation that their Bitcoin was held in real cold wallets. They had no protection when the single custodian died or disappeared.

This is counterparty risk at its most extreme. And it is indistinguishable in principle from keeping your Bitcoin on any exchange that does not provide full proof-of-reserves audits, which is to say most exchanges. The customers who moved their Bitcoin to self-custody before the collapse were unaffected. The ones who trusted the platform were not.

Mark Frauenfelder: a Near-Miss Worth Understanding

Not every story ends in permanent loss. Mark Frauenfelder is the founder of BoingBoing and a contributing editor at Wired. In 2017, he wrote a candid account of nearly losing 7.4 Bitcoin due to a cascade of small mistakes.

He had set up a Trezor hardware wallet and written his 24-word seed phrase on a piece of paper, correctly in principle. But he had also set a PIN on the Trezor and allowed himself to forget it, assuming the seed phrase was sufficient. When he needed the seed phrase, the paper with the words was at a friend's house in Los Angeles. That house was damaged in a mudslide, leaving the note illegible.

With no PIN and no readable seed phrase, he was locked out. He eventually hired a security researcher named "Dave Bitcoin" who used a specialised technique to reset the Trezor's PIN counter, allowing additional attempts. After months of work, he recovered his Bitcoin.

Frauenfelder was extraordinarily lucky. The technical exploit used to recover his Trezor was only possible because of a specific hardware vulnerability that has since been patched. Anyone facing a similar situation today would have no equivalent escape route.

The failure mode

Backup stored in a single location, without redundancy, without protection from physical damage. A seed phrase on paper is the right approach, but paper can burn, flood, or fade. A seed phrase etched on stainless steel, stored in a second secure location, does not have these vulnerabilities. The backup strategy is as important as the key itself.

Early adopters who deleted their wallets

The most anonymous and numerous group of lost Bitcoin holders are the early adopters: programmers, cypherpunks, and curious technologists who mined or bought Bitcoin before 2012, when it had no meaningful price. Many of them treated their Bitcoin wallets the way they treated old software: periodically cleaning up, reformatting drives, deleting files they no longer thought they needed.

In 2009 and 2010, you could mine 50 Bitcoin in an afternoon on a home computer. Those coins had no commercial value. There was no obvious reason to treat the wallet.dat file as something precious. Thousands, perhaps tens of thousands, of individuals deleted wallets containing hundreds of Bitcoin during routine system cleanups, not realising what they were discarding.

These stories rarely make the news individually. But collectively, they represent millions of permanently lost Bitcoin, coins mined into existence in Bitcoin's earliest days, assigned to addresses that will never again move, because the keys are gone.

The common thread in every story

James Howells lost a hard drive because his wallet had no backup. Stefan Thomas locked himself out because his password had no backup. QuadrigaCX customers lost everything because they trusted a third party who had no accountability. Frauenfelder nearly lost his coins because his seed phrase backup had no redundancy. Early adopters lost wallets because they did not understand what they had.

Every single failure is a variation on the same theme: a lack of deliberate, redundant, tested recovery strategy. In not one of these cases was the underlying Bitcoin cryptography at fault. The Bitcoin was perfectly secure. The humans responsible for the keys were not.

What a correct custody setup prevents

Every failure mode in these stories traces back to the same categories: missing backups, inaccessible backups, single points of failure, and misplaced trust in third parties. None of these failures are exotic. None required sophisticated attacks. Each one was a gap in a setup that looked reasonable until it was not.

A properly constructed custody arrangement addresses all of them. The specific approach, hardware selection, backup medium, storage locations, inheritance structure, depends on your situation, your risk profile, and how your Bitcoin is currently held. These are decisions with permanent consequences. They are what a private consultation is designed to work through, carefully, before any mistake has been made.

The irreversibility problem

In traditional finance, mistakes are often reversible. A forgotten password resets via email. A lost card is cancelled and reissued. A disputed transaction is chargedback. There are institutions whose entire purpose is to recover money from failure.

Bitcoin is different. Its irreversibility, the property that makes it resistant to censorship and seizure, is the same property that makes custody mistakes permanent. There is no Bitcoin recovery service, no customer support line, no regulatory body that can restore access to lost private keys. When the key is gone, the Bitcoin is gone. Not locked — gone. Forever.

This is why getting it right matters so much. And why it matters that you get it right the first time.