The force says a phishing link captured a cold-wallet seed phrase, allowing the thief to move the funds within minutes.
