POV: You're a fraud analyst at a crypto exchange - what would you do in this case? User context: - Experienced crypto user - Regular transaction history - Makes crypto sends frequently Flags (in last 30 days): - Logins from 4+ countries - Multiple 2FA authentication failures - Brand new login device, never seen before - Intermittent VPN use The transaction: - Small test send to completely empty/new wallet (no activity on any chain) - 2 minutes later: attempts to send ~95% of their balance - Is the largest send they have ever done (life-changing money) This is a real scenario our fraud models/analysts faced. I'll follow up with the real outcome once the poll is finished.