1/ Meet @WheresBroox (Broox Bauer), one of several @AxiomExchange employees suspected of abusing internal tools to exploit access control vulnerabilities, tracking user private wallet activity since early 2025 to obtain sensitive user information for insider trading.
2/ Axiom is a cryptocurrency exchange founded in 2024 by Mist and Cal. After participating in Y Combinator's Winter 2025 incubation program, it quickly became one of the most profitable companies in the space, generating over $390 million in revenue to date.
I was hired to investigate allegations of misconduct at Axiom based on a prior whistleblower report.
3/ Broox is currently a senior business development employee at Axiom, based in New York.
In the video clip, Broox claims he can track any Axiom user through referral codes, wallets, or UIDs, stating he can "find any information related to that user."
He also mentioned that they initially researched 10-20 wallets, then gradually increased the number over time, "so it wouldn't look so suspicious."
In another segment of the same recording, Broox outlined the basic rules for requesting inquiries from him, then indicated he would send a complete list of wallets.
The full recording is a private call between group members discussing strategy.
4/ In April 2025, Broox shared a screenshot of Axiom's internal control panel showing trader "Jerry's" private wallet.
In August 2025, Broox sent a second image showing trader "Monix's" registration information and associated wallets.
In August 2025, Broox discussed how to find Axiom users who had traded the meme coin "AURA".
5/ The group created a Google Sheet summarizing the wallets of multiple KOL targets and plotted the wallet addresses Broox collected through Axiom's internal control panel.
Several KOLs (Key Opinion Leaders) mentioned in the list or leaked screenshots have been contacted, and the accuracy of the wallet data associated with them has been confirmed.
6/ One of the KOLs contacted is Marcell, a trader with a poor reputation who has been criticized for using his followers on X and Telegram as exit liquidity.
He became a target because he purchased large amounts of meme tokens from a private wallet (a practice known as bundling) and then promoted them to his followers.
Traders like Marcell are prime targets for this type of abuse because address reuse is uncommon, and private wallets are rarely public, making insider information more valuable.
7/ Broox's main wallet was identified through messages sent in private chats, and a graph of all directly related addresses was created.
FarpaWkzio7WQVpQeu2eURvNQZ3pCBZupJ95wUjoHcUN
Due to the massive trading volume of meme tokens associated with the relevant addresses, it would be difficult to identify a high-confidence case of insider trading based solely on his wallet without access to Axiom's internal logs to examine the timing of the transactions.
Funds from the relevant addresses primarily flowed into the following CEX deposit addresses:
9HtKkLzTVUGMS9BDMSXbVjooP1rVoeiFPj3tEtmj7Qn4
A8XSEaZXYo8eidAMivoAonf8skBeW1QkfprdBJm6eVz
HPr1MSrSB2i9r9Vcsj8Cmx2sUFGudpDum6kY9dp2ePCN
Afp4DargofX8K67BRUuhVuoBy1DJn9vTbH3ico9CaNs1
6rv1iSZ7YyR18R7EPvXwHdDkNp3qzrE9YPQtPnLVaYbv
8/ Broox was also part of the call with his friend Gowno (Seb), who is an Axiom... Recently Hired Moderator.
In the first recording, Broox claimed that another Axiom BD employee, Ryan (Ryucio), used an internal control panel to find user information for others and helped his friend Mystery get hired as a moderator on Axiom.
In the second recording, Broox discussed how Gowno's responsibilities would increase over time and stated that he could eventually assist with user information searches.
Neither Ryan nor Mystery appeared in the recorded calls.
9/ In a recorded call from February 2026, Broox outlined a plan to help Gowno quickly profit $200,000 using his access to Axiom. This is consistent with similar illegal activities he has been engaging in with others since early 2025.
In a private chat, he also shared screenshots of his trading balance. This suggests that the plan may have already begun generating profits.
10/ I was commissioned to conduct an independent investigation into alleged misconduct at Axiom, and the following findings are my conclusions.
Earlier today, I contacted the Axiom team for comment. Their statement is attached.
Whether Cal or Mist were aware of it or not, there were virtually no monitoring or access controls in place to prevent such abuse at the time.
It is extremely rare for business development personnel to have employees able to view such a wide range of data through an easily accessible dashboard.This includes a complete list of the user's wallets (with date/time), the wallets they are tracking, transaction history, wallet nicknames, and associated accounts.
Given Broox's headquarters in New York City, I believe this case presents a significant opportunity for the U.S. Attorney's Office for the Southern District of New York (SDNY), as it may fall under its jurisdiction.
