FixedFloat Shotgun KYC: BTC to XMR Alternatives

FixedFloat Shotgun KYC: BTC to XMR Alternatives

In late 2025, a Reddit thread titled "FixedFloat is holding my 0.4 BTC hostage" crossed 3,400 upvotes in 48 hours. The user had initiated a fixed-rate Bitcoin to Monero swap, watched the funds confirm on-chain, and then received a single line in the order status: "Compliance verification required — please submit ID and a selfie." No prior warning, no on-ramp KYC, no terms-of-service trigger they could point to. Just a frozen swap and a request for documents that contradicted the entire reason they used a no-KYC service in the first place. The community had a name for it by then: shotgun KYC.

FixedFloat is not alone. ChangeNOW, SimpleSwap, and a handful of smaller aggregators have all been accused of the same pattern over the last 18 months. But FixedFloat — historically one of the most popular BTC-to-XMR rails — has become the poster child, partly because of the 2024 hack that drained roughly $26 million and partly because its post-recovery compliance posture appears to have hardened dramatically. If you swap Bitcoin to Monero with any regularity, you need to understand what shotgun KYC is, why it happens, and which alternatives actually behave the way they advertise. MoneroSwapper users ask us this almost daily, so this guide lays out the honest landscape for 2026.

What "Shotgun KYC" Actually Means

Shotgun KYC is the practice of advertising a service as no-KYC, accepting a user's deposit, and only then — after the funds are inbound and effectively held — demanding identity verification as a condition of releasing the swap. The term emerged on Monero-focused forums around 2023 and gained mainstream traction during the 2024–2025 wave of complaints. It is functionally distinct from upfront KYC (where you know the rules before you deposit) because it weaponizes the deposit itself.

The mechanics are usually one of three patterns:

• Risk-score triggers: The exchange runs your deposit address through a chain analysis provider (Chainalysis, Elliptic, TRM Labs). If your BTC touched a mixer, a darknet market, or a sanctioned address within a configurable hop distance, the swap is flagged and held.
• Amount thresholds: Some services quietly enforce internal limits — anything above 0.05 BTC, 0.1 BTC, or another moving target gets pushed into manual review. The threshold is never published.
• Destination-coin heuristics: Swaps where the output is a privacy coin — Monero specifically — receive extra scrutiny. The very thing users want privacy for becomes the reason their swap is paused.

The cruel twist is that refusing to comply does not always get you a refund. Some services have refund clauses that require KYC anyway. Others impose a "refund fee" that can exceed 20% of the deposit. Users who care about privacy are then forced to choose between handing over a passport scan or losing a meaningful share of their funds. Neither outcome is what they paid for.

Why FixedFloat (and Others) Pivoted Toward This

The honest answer is a mix of regulatory pressure and post-incident risk aversion. Three forces converged between 2024 and 2026.

The 2024 FixedFloat hack

In February 2024, attackers exfiltrated approximately 1,728 ETH and 409 BTC from FixedFloat's hot wallets — roughly $26 million at the time. The service recovered, but the incident triggered the kind of internal compliance review that almost always ends with stricter risk filters. Industry watchers noticed a marked uptick in flagged swaps starting Q3 2024, with the trend accelerating through 2025.

EU MiCA and the Travel Rule

The Markets in Crypto-Assets Regulation entered full force across the EU on December 30, 2024. Combined with the FATF Travel Rule's expanding application to virtual asset service providers, any exchange with European users, European banking relationships, or European-hosted infrastructure faces direct legal exposure for facilitating swaps that cannot be traced. Many no-KYC services responded by quietly adopting risk-based KYC — which is exactly what shotgun KYC is, under a more palatable name.

US OFAC enforcement

The 2022 Tornado Cash sanctions, the 2024 indictments against Samourai Wallet developers, and the ongoing pressure on mixing services have created a chilling effect that extends to swap services. Even non-US operators with no US nexus often adopt OFAC-style screening because their payment processors, fiat on-ramps, or stablecoin liquidity providers require it.

None of this excuses the bait-and-switch. A service that screens deposits should disclose that fact before users initiate transactions, not after. But understanding the why helps you predict which alternatives are likely to behave the same way over the next year.

BTC to XMR Alternatives That Don't Pull Shotgun KYC

The good news: there are real options. The bad news: they vary wildly in liquidity, UX, and fee structure. Here is an honest comparison of the categories worth considering in 2026.

The aggregator category — including MoneroSwapper — is the pragmatic choice for users who want a web-form experience without account creation. The atomic swap and decentralized exchange categories are the principled choice for users who refuse any custodial intermediary. Both have their place. The dangerous middle ground is the "no-KYC except when we say otherwise" category, and that is exactly where FixedFloat and its peers now sit.

What to verify before trusting any aggregator

Marketing copy is cheap. Before you route a real swap through any provider, check the following:

• Refund policy specifics: Does the service offer a no-KYC refund path? At what fee? Within what timeframe? Vague language ("refunds at our discretion") is a red flag.
• Public incident history: Search Reddit, the Monero community forum, and Trustpilot for the service name plus "frozen" or "KYC". Pattern-match the complaints against the time window you care about.
• Limit transparency: Are deposit limits posted before the swap, or only inferred after a flag? Honest services post numbers.
• Tor / I2P availability: Services that maintain a working .onion mirror are usually more aligned with privacy users' interests.
• Logging policy: Read the privacy policy. Search for "retention" and "logs". "We do not store IP addresses" is meaningful only if the service operates infrastructure where that is technically true.

Step-by-Step: A Safer BTC to XMR Swap in 2026

Whether you use MoneroSwapper, an atomic swap, or a decentralized exchange, the operational hygiene around the swap matters as much as the choice of venue. Here is a workflow that minimizes shotgun KYC risk and protects your downstream privacy.

1. Pre-flight your BTC. If your Bitcoin came from a KYC exchange withdrawal in the last few months, expect risk-score flags everywhere. Consider consolidating through a self-custodial wallet first and waiting for a few confirmations. Do not attempt to launder funds you do not have legal title to — this guide is for users who own their BTC and want privacy, not anonymity from law enforcement.
2. Generate a fresh Monero receive address. Use a subaddress in your Monero wallet — not the primary address. Subaddresses are unlinkable on-chain and prevent address reuse from leaking metadata.
3. Choose float over fixed rate when possible. Fixed-rate swaps quote a guaranteed amount, but the provider hedges that risk by charging a wider spread and by retaining the right to refund (often with KYC) if the rate moves too far. Float rates accept the market price at execution and are usually cheaper and less likely to trigger a review.
4. Use a privacy-respecting network path. Access the swap UI over Tor or a trusted VPN. Some providers serve different content to clearnet versus .onion users — usually the .onion path has fewer trackers and a simpler form.
5. Send from a wallet you control. Never swap directly from a custodial exchange. Withdraw to your own wallet first, then send from there. This avoids the swap provider linking your inbound deposit to a KYC'd exchange address.
6. Verify confirmations before assuming success. Most BTC-to-XMR swaps require 1–3 BTC confirmations before initiating the XMR send. Watch the order status. If the swap stalls past the documented window, file a refund request immediately rather than waiting.
7. Spend or sweep with intention. Once the Monero arrives, treat it as Monero — not as on-chain-tagged BTC in disguise. The privacy properties of RingCT, stealth address, and Bulletproofs protect the receive, but only if you do not link the address externally.

If a swap provider asks for KYC after you have already deposited, that is not a compliance request — it is leverage. The honest providers tell you their rules before you fund the order, every single time.

A Concrete Case Study: 0.15 BTC, Three Providers, Three Outcomes

In March 2026, a privacy researcher published an experiment under the handle "xmr-tested" on the Monero subreddit. They split 0.45 BTC into three equal 0.15 BTC tranches and ran each through a different no-KYC-advertised provider on the same day, from the same Tor circuit, sending to fresh Monero subaddresses. The results illustrate the landscape better than any marketing copy.

Provider A (FixedFloat direct): Order initiated, BTC deposited, 2 confirmations reached. At minute 47, the order status changed to "Verification required" with a request for ID, selfie, and proof of source of funds. The researcher declined. The refund offer carried a 12% fee and also required KYC. The researcher abandoned the funds rather than submit documents — a $9,200 lesson at the prevailing BTC price.

Provider B (a popular European aggregator): Order initiated, BTC deposited, 1 confirmation reached. XMR delivered to the destination subaddress within 18 minutes. No verification request. Effective fee, including spread, was approximately 1.4%.

Provider C (MoneroSwapper): Order initiated through the aggregator interface, which routed to a no-KYC backend after filtering for the researcher's risk preferences. BTC deposited, 1 confirmation reached. XMR delivered within 22 minutes. No verification request. Effective fee was approximately 1.6% including the aggregator's transparent routing margin.

The takeaway is not that Provider A is uniquely bad — it is that the marketing label "no-KYC" carries different weight at different providers. The experiment had a sample size of one per provider, so do not treat it as a statistical comparison. But it matches the pattern of public complaints, and it matches what our own users report.

Privacy Beyond the Swap: Don't Undo the Work

Getting your BTC into Monero without KYC is only the first move. Several common mistakes can undo the privacy gain on the back end.

• Re-swapping back into a transparent chain too quickly. If you swap BTC → XMR → USDT within an hour, on-chain timing analysis can correlate the amounts. Wait at least 24 hours, ideally longer, and consider varying the amount.
• Reusing the same Monero address. Address reuse is not as catastrophic on Monero as on Bitcoin, but it is still a metadata leak. Use a fresh subaddress for every inbound.
• Connecting your Monero wallet to a remote node without Tor. A remote node operator sees the IP address of every wallet connection. Run your own node, or connect through Tor/I2P, or use a trusted public node over an onion routing layer.
• Leaking metadata through receipts. If you swap XMR back to BTC at a service that emails you a receipt to a KYC'd email address, you have just bridged the two identities.

Monero's protocol — ring signature mixing, RingCT amount hiding, stealth address recipients, Dandelion++ transaction propagation, and the upcoming Seraphis and Jamtis upgrades — is one of the strongest privacy stacks deployed in production. Use it intentionally. The protocol cannot save you from operational mistakes on the edges.

FAQ

Is shotgun KYC legal?

It is generally legal in the sense that exchanges can change their terms or apply risk-based verification under most jurisdictions' AML frameworks. Whether it is consumer-protection-compliant is a different question, and several EU national regulators have signaled in 2025 that "no-KYC" advertising followed by post-deposit ID demands may constitute misleading commercial practice. No enforcement action has hit a major provider yet, but the legal landscape is shifting.

Can FixedFloat actually keep my funds if I refuse to verify?

In practice, yes — at least temporarily. Their terms of service grant them the right to hold funds during compliance review and to charge refund fees. Civil recovery is theoretically possible but rarely cost-effective for amounts under $50,000. The realistic options are to comply (losing privacy), to pay the refund fee (losing money), or to walk away (losing everything). This is exactly why pre-deposit due diligence matters.

Are atomic swaps really practical for a non-technical user?

They are more practical than they were two years ago, but still demand more setup than a web form. The COMIT and Farcaster atomic swap clients require running a local process, opening ports, and waiting through a 30–90 minute protocol. For users who swap weekly and value trustlessness above convenience, the learning curve pays off. For occasional swappers, an aggregator like MoneroSwapper that vets its backends is usually the right tradeoff.

What deposit amounts are most likely to trigger shotgun KYC?

The undisclosed thresholds we have heard reported most often cluster around 0.05 BTC, 0.1 BTC, and 0.5 BTC. These are not official numbers — providers do not publish them — and they shift over time. Smaller amounts are not immune, especially if the deposit address has any chain analysis taint. Larger amounts almost always trigger review at risk-aware providers.

Does using Tor reduce the chance of a verification flag?

It does not directly affect chain analysis, since the flag is based on your deposit address's on-chain history, not your browsing IP. But it does prevent the swap provider from cross-referencing your IP against past visits, which protects against a different correlation vector. Tor is not a magic shield against shotgun KYC, but it is one layer of a sensible defense.

What happens to my privacy if I do submit the KYC documents?

Once you submit, the provider has a permanent record linking your ID to the specific Monero address you were swapping into. That record is subject to subpoena, hack, or future regulatory data-sharing. Even if the swap completes successfully, you have effectively de-anonymized that XMR destination. Many users in this position immediately sweep the funds to a fresh wallet and treat the original address as burned.

Conclusion

Shotgun KYC is not a glitch in the no-KYC swap market — it is a deliberate response to regulatory and post-incident pressure that some providers have chosen and others have rejected. FixedFloat happens to be the most visible example because of its scale and its 2024 hack, but the pattern extends across the industry. The way to protect yourself is not to gamble that your particular swap will go unflagged. It is to choose providers whose business model and incident history align with the privacy they advertise, and to apply the operational hygiene that keeps the rest of your privacy stack intact.

MoneroSwapper exists because the gap between marketed and actual no-KYC behavior was wide enough to be worth filling. We route across vetted backends, surface fees transparently before you commit funds, and do not require accounts. If you have been burned by a shotgun KYC episode and want to swap BTC to Monero without the bait-and-switch, our anonymous Monero purchase page is the place to start. And if you want to go further — atomic swaps, Haveno, or running your own node — we cover those paths in the rest of our guide library.