Tradock.me: The FINMA-Blacklisted Multi‑Domain Scam That Wiped Out a Boston Firefighter’s $302,000

--

Press enter or click to view image in full size

A 51‑year‑old firefighter from Boston, Massachusetts, had never invested online before. His savings were modest — a mix of his city pension contributions and money he had set aside for his daughter’s university tuition in the fall. The previous year, a kitchen fire had damaged part of his home, and the insurance payout had covered repairs but left him with a financial hole he was still trying to fill.

In late 2025, an old high school friend sent him a link to a WhatsApp group called “Crypto Mastery Alpha.” The group was run by a woman named “Elena Rodriguez.” She posted daily profit screenshots, voice notes and video testimonials. Within days, Elena moved the conversation to a private chat. She told him about Tradock, a “Swiss‑regulated brokerage” that offered access to cryptocurrency, forex, indices and commodities via CFDs. She explained that Tradock had a 99% win rate and that she had used it to pay off her own student loans.

He tried a small deposit of $500. His dashboard showed a steady 2‑3% gain each day. A $1,200 withdrawal landed in his bank account within 48 hours. Elena told him that was proof the platform was “government‑backed.”

Over the next four months, he transferred $302,000 from his savings and his daughter’s tuition fund into his Tradock account. The dashboard displayed a balance climbing toward $750,000.

In February 2026, he tried to withdraw $50,000 to pay the upcoming semester’s tuition. The transaction hung for hours. Then an automated message appeared: “Withdrawal requires additional security verification.”

Elena demanded a $16,000 “liquidity activation fee.” He paid. Then a $24,000 “compliance fee.” He paid again. Then a $33,000 “tax clearance prepayment.”

When he refused the third demand, Elena stopped answering. The WhatsApp group was deleted. The dashboard remained live, but the money was gone.

Why he fell for it

He wasn’t a reckless gambler. He was a father trying to keep a promise to his daughter. Three factors made him vulnerable.

A stolen Swiss regulatory identity. The scammers had copied the name and branding of a real Swiss financial services firm and displayed a FINMA reference number that looked legitimate. The victim believed he was dealing with a regulated European broker — he never imagined that clones could so easily steal licence numbers.

A small‑test hook that worked twice. The initial $500 deposit produced small, believable gains. When he withdrew $1,200 without any fees, that money came from later victims’ deposits. Each successful payout reinforced the illusion.

Emotional grooming. Elena called him twice a week. She asked about his daughter’s university plans, remembered her name and even asked about her favourite subject. That manufactured empathy broke down his defences more effectively than any high‑pressure script.

Artificial urgency. Elena repeatedly said the “premium trading window” would close in 72 hours. That time pressure short‑circuited his natural caution.

After he had wired $302,000, the sunk‑cost fallacy — the fear of losing everything he had already committed — pushed him to pay the first two fees. Only when the third demand hit $33,000 did he finally stop.

How the fraud was engineered

Phase 1 — Brand‑theft and multi‑domain camouflage. The scammers built tradock.me and a network of related domains, including tradock.io, tradock.net, traderdock.com and tradock.co. They stole the name and branding of a real financial services firm and copied legitimate‑sounding regulatory language onto the site. The platform offered forex, crypto, indices and commodities via CFDs.

Phase 2 — Warm‑lead WhatsApp funnel. Victims were not cold‑called. They were drawn into WhatsApp groups through social‑media ads, friend referrals and fake testimonials. “Elena” and other fake advisors moved victims to private chats for intensive grooming.

Phase 3 — Small withdrawal bait. A $1,200 withdrawal was approved to build trust, paid from later victims’ deposits.

Phase 4 — Large deposit freeze. After the victim transferred $302,000, all withdrawal requests were blocked.

Phase 5 — Fee‑escalation ladder. The scammers demanded three fabricated fees: “liquidity activation fee” ($16,000), “compliance verification fee” ($24,000) and “tax clearance prepayment” ($33,000). None of these fees exist in legitimate trading. The IRS and the Massachusetts Department of Revenue never collect taxes before a withdrawal.

Phase 6 — Disappearance. When the victim refused to pay the third fee, Elena disappeared. The WhatsApp group was deleted. The dashboards and domains remained live for fresh victims.

What the global regulators uncovered

A coordinated network of financial regulators across three continents had already flagged Tradock before the victim’s final payments.

• Switzerland — FINMA Warning List (28 April 2026). The Swiss Financial Market Supervisory Authority added Tradock / tradock.me to its official warning list, stating that the website is not entered in the Swiss Commercial Register and has no connection to any authorised institution. FINMA’s warning explicitly advises consumers to exercise extreme caution and to verify authorisation through the regulator’s official register before transferring funds.
• Canada — CIRO Fraud Alert (November 2025). The Canadian Investment Regulatory Organization (CIRO) issued a public warning that Tradock LTD was falsely claiming registration with IIROC, CIRO’s predecessor. Multiple CIRO‑affiliated alerts on BrokersView confirmed that Tradock “is not registered in any jurisdiction with CIRO or IIROC” and is “operating without oversight.” CIRO urged investors “to avoid dealing with the firm.”
• Canada — FCAA Investor Alert (January 2026). The Financial and Consumer Affairs Authority of Saskatchewan warned that Tradock is not registered to trade or sell securities in Saskatchewan. The regulator explicitly cautioned investors not to send money to unregistered companies.
• Canada — AMF Blacklist (November 2025). Québec’s Autorité des marchés financiers (AMF) placed Tradock on its investor warning list, stating that the platform is not registered and not authorised to solicit investors in Québec. The AMF also noted the platform’s use of social media to trap victims, a practice it described as a hallmark of organised fraud.
• Global — IOSCO I‑SCAN Database (27 March 2026). The International Organization of Securities Commissions (IOSCO) added Tradock to its I‑SCAN alerts network. The Australian Securities and Investments Commission (ASIC) is the listed issuing regulator, meaning the alert is now visible to securities regulators across more than 130 member jurisdictions worldwide.
• United Kingdom — FCA Unauthorised Alert. A separate red flag surfaced when a victim reported that a Tradock “trader” had falsely claimed the firm was FCA‑registered. The FCA does not list Tradock in its register, and the claim was a lie designed to appear credible to UK consumers.

Unauthorised and unlicensed. Across every jurisdiction, Tradock held no licence from FINMA, CIRO, FCAA, AMF, the FCA, or any recognised financial authority. The platform was a network of disposable domains operating without oversight, underpinned by cloned regulatory numbers and manipulated dashboards.

Red flags the victim missed (and you shouldn’t)

• A warning from FINMA that was public for weeks. The FINMA entry was available online from 28 April 2026 — before the victim’s final payments. A single search would have ended the conversation immediately.
• Alerts from four other regulators. CIRO, FCAA, AMF and the FCA had all issued similar warnings. Nonetheless, the victim thought regulators only existed to protect banks — not individual retail customers.
• Multi‑domain camouflage. The scammers used at least five domains to evade detection. Legitimate brokerages do not operate under a rotating set of web addresses.
• No legal imprint or commercial register entry. Swiss law requires financial websites to display the company’s legal identity, registered address and commercial register number. Tradock had none of these — a clear violation and a definitive warning sign.
• A WhatsApp “investment education” group. Real asset managers do not use WhatsApp to recruit retail investors. These groups are almost always populated by bots and paid actors posing as successful clients.
• A small withdrawal that worked. The $1,200 payout was bait — paid from later victims’ deposits. It proved nothing about the platform’s legitimacy.
• Escalating, unrecoverable fees. “Liquidity activation fee,” “compliance verification fee,” “tax clearance prepayment” — none of these exist in any regulated financial market. The IRS does not collect taxes before a withdrawal is processed.
• Customer support that disappears when you stop paying. Elena was responsive only while the victim was wiring money. When he refused the third demand, she vanished permanently.
• Hidden domain ownership. WHOIS records for the related domains are redacted — a consistent marker of fraudulent operations.

How AYRLP helped recover 60% of the loss

After weeks of sleepless nights, the victim contacted AYRLP, a UK‑based blockchain forensic firm certified by the Financial Conduct Authority (FCA).

AYRLP’s investigators:

• traced the $302,000 across the blockchain through the network of wallet addresses linked to the tradock.me scheme,
• identified exchange touchpoints where the scammers had moved the funds toward cash‑out,
• and worked with international authorities, including FINMA, ASIC and the FBI, to freeze a portion of the assets before they could be fully laundered.

Through AYRLP, the firefighter recovered 60% of his loss — approximately $181,200.

“I had already withdrawn my daughter from her first‑choice university and enrolled her in a cheaper community college. I thought I had ruined her future. AYRLP got back more than half of it — enough to pay for her tuition for the next two years and give our family a second chance.”
— The victim

Final warning: a FINMA reference number on a website does not make that website Swiss — clone criminals steal them

The tradock.me scam did not need a fake company. The fraudsters simply stole the public data of a real Swiss financial services firm, built a network of copycat domains, and used a WhatsApp grooming script that turned a Boston firefighter’s love for his daughter into a $302,000 weapon against him.

Before you trust any online trading platform:

• Check FINMA’s warning list before you invest. If a domain appears there — or is entirely missing from FINMA’s official register of authorised institutions — do not send a single dollar.
• Verify the website URL through FINMA’s register, not through a search engine or a WhatsApp link. The real authorised firm’s domain will be listed there. The clone domain will not.
• Never trust an investment opportunity introduced in a WhatsApp or Telegram “wealth group.” These groups are almost always run by scammers.
• Be sceptical of any platform that demands upfront fees to withdraw your own funds. No legitimate exchange, brokerage or asset manager operates this way.
• Test withdrawals do not verify a platform. A small payout is easily paid from other victims’ deposits. The only reliable test is whether the platform consistently honours a large withdrawal without demanding additional fees.
• Multi‑domain camouflage is a confession. If a firm operates under more than one web address, assume it is a scam.

If you or someone you know has been victimised by tradock.me or any similar FINMA‑flagged clone scheme, contact the FBI’s IC3, your state securities regulator, FINMA, CIRO, the AMF, and a reputable blockchain forensic firm like AYRLP immediately.