DeFi
February 27, 2026
Axiom wallet tracking has become one of the more jaw-dropping data abuse stories to hit crypto in 2026. A ZachXBT investigation revealed that Broox Bauer (@WheresBroox), a senior business development employee at Axiom Exchange, had been using internal company tools to look up private user wallet data since early 2025 and sharing that information with a group of traders to front-run KOLs.
The Axiom data abuse story then took a second turn when onchain researchers tied a $421K Polymarket insider trading win to wallet addresses connected to Broox himself. And then Pump.fun employees were found placing five and six figure bets on the outcome before the story even dropped.
Also Read: Binance Seeks Europe MiCA License as Revolut Prepares GBP‑Pegged Crypto Token
Axiom Wallet Tracking Scandal, Data Abuse Claims And Polymarket Bets
What Was Actually Happening Inside Axiom
Axiom is a crypto trading platform founded in 2024 that went through Y Combinator’s Winter 2025 batch and has since generated over $389 million in cumulative fees. ZachXBT, retained to independently investigate misconduct at Axiom, published findings showing that Broox had access to an internal dashboard displaying highly sensitive user information, including full wallet lists with registration timestamps, transaction history, wallet nicknames, and linked accounts. That level of access is unusual for a BD role, and according to the investigation it was being abused consistently over a long period.
A recorded call obtained during the investigation has Broox saying he can track any Axiom user via ref code, wallet, or UID and that he can “find out anything to do with that person.” He also described deliberately starting with 10 to 20 wallet lookups and slowly increasing that number “so it does not look that suspicious.” In a separate clip from the same recording, Broox laid out ground rules for how to request lookups and told the group he would send them a full wallet list.
The KOL Target List and How the Data Was Used
Broox was sending internal dashboard data in private chats on multiple occasions. In April 2025, he shared a screenshot exposing wallet data for a trader known as “Jerry.” A second screenshot from August 2025 showed registration and connected wallet information for a trader called “Monix.” The group also compiled everything into a Google Sheet listing multiple KOL targets by name with wallet addresses mapped out. Several of those KOLs were contacted independently and confirmed the data attributed to them was accurate.
Marcell, one of the named targets, routinely bundled large portions of meme coin supply from private wallets before promoting those coins to followers. Traders like Marcell are prime targets precisely because their private wallets are rarely public, making the privileged dashboard access much more valuable to anyone front-running their moves.
Also Read: Citi Launches Bitcoin Integration Infrastructure for Traditional Finance
In February 2026, a recording caught Broox outlining a plan to help a recently hired Axiom moderator known as Gowno profit $200,000 quickly by leveraging his platform access, consistent with similar activity allegedly running since early 2025. Private chat screenshots also showed Broox’s exchange balances, suggesting the scheme had already been generating real returns.
The Polymarket Bet That Made Everything Worse
The story picked up a second layer when onchain researchers connected Broox to the top Polymarket trader on a market asking whether ZachXBT’s announced investigation would turn out to be about Axiom. Wallet 0x054e placed $212,563 on “Yes” at 33.5 cents, ending up with a $421,496 payout, a 198% return. The wallet also held “No” shares alongside the position, a common tactic to reduce suspicion.
Tracing 0x054e back led to wallet 0xb96e, which had two distinct onchain connections back to FarpaW, the main wallet identified as Broox’s in ZachXBT’s investigation. Researchers noted they cannot confirm Broox owns 0x054e or placed those bets directly, but the onchain data documents the connections clearly.
Axiom Responds, and the Pump.fun Question
After ZachXBT contacted them for comment, Axiom provided the following statement:
“We are surprised and disappointed to hear that someone on our team abused internal customer support tools to look up user wallets. We have removed access to these tools and will continue to investigate and hold the offending parties responsible. This does not represent us as a team, we have always tried to put user first. We’ll share updates on our Twitter as we learn more.”
ZachXBT noted that regardless of whether the co-founders were aware, little to no monitoring or access controls were in place to prevent the abuse. He also flagged that Broox is based in New York City, potentially putting the case within SDNY jurisdiction, and called on the co-founders to pursue legal action.
Also Read: PBOC Yuan Intervention Snaps 15‑Year Rally as China Moves to Curb Gains
The broader reaction also pointed fingers at Pump.fun. Someone paid ZachXBT to investigate insider trading, he hyped the announcement without naming anyone, and Pump.fun employees then placed five and six figure bets on it being Axiom before the reveal.
Pump.fun also pushed an update that disabled most trading terminals right as the news dropped, with those employees reportedly pocketing more than what Broox himself stood accused of making.
Nobody has confirmed whether any of that meets a legal threshold yet, but the wallet tracking scandal has put a real spotlight on how much access platform employees can have to user data and how little exists to stop them from abusing it.
