Dozens of Binance users point out to have received a disturbing wave of phishing text messages that seem authentic. These messages even correspond to the phone number and the SMS reception box that they see regularly for the official binance updates. Almost all the phishing texts examined by Beincrypto have the same wording and format. This leads us to think that a malicious actor or a particular criminal group targets Binance users with a sophisticated phishing campaign. PHISSHING CAMPAGNE Targeted against Binance users, messages often warn of unauthorized activities on user account, such as adding a new two -factor authentication device. Most often, phishing messages are followed by a text concerning an unexpected association of the binance API with Ledger Live. The recipients are then encouraged to call a telephone number provided. Some targeted users claim that these texts appear in the same thread as their legitimate binance notifications. This creates confusion and encourages them to react. Beincrypto surveys reveal an increase in consumer complaints on X (formerly Twitter). A user of Binance shared the SMS received during last week with Beincrypto many users say they were caught up in the fraudulent messages from the same sender identifier used by Binance for authentic notifications. Meanwhile, criminals behind this campaign seem to take advantage of Binance user data leaks publicly reported on the Dark Web forums. Last month, around 230,000 combined user records from Binance and Gemini were reportedly sold on the Dark Web. Security experts suggest that these leaks come from phishing attacks rather than direct systems violations. The group suspected of malicious actors probably uses disclosed information-names, telephone numbers and emails-to create targeted messages that give the illusion of legitimacy. Recordad that Aunque Os llegue a mensaje por el canal “oficial” of SMS de @binance, Jamás Debéis Hacer Click en Ningún Enlated ni hacer of Lo that Os Envíen.Binance Nunca OS Enviará Ese Tipo de Mensajes.¿queréis Saber Como Actil o Sencillamente lo that hice yo al. pic.twitter.com/plctc88vlt— Ingniero seed ph. (Oficial) (@ingieroseed) April 11, 2025 more, the diagram observed in phishing attempts generally implies an urgent question of the type “right? ». This encourages recipients to call an integrated phone number instead of simply clicking on a link. This method bypasses the more common scenario of phishing links in SMS. Binance extends the anti-phishing code to SMS in an exclusive e-mail in Beincrypto, the director of security of Binance, Jimmy SU, responded to these discoveries. Su confirmed that the company is aware of the climbing of SMISHING incidents. “We are aware of the increase in Smishing scams where crooks pretend to be us and other legitimate sender via SMS. These scams seem more authentic, deceiving users so that they reveal sensitive information, click on phishing links or carry out a transfer resulting in loss of assets, “said Binance’s security director in Beincrypto. SU also revealed that Binance has extended its anti-phishing code to SMS. This feature was initially offered for emails. The code is an identifier defined by the user who appears in the official Binance messages, facilitating the recognition of authentic notifications and avoiding impostors. “By incorporating a unique anti-phishing code in Binance’s SMS messages, we make it more difficult for crooks to deceive our users,” said Su. The anti-phishing code has been deployed in all licensed courts where Binance operates. In addition, according to Binance, both registered and unregistered users reported that they have received suspicious texts. Consequently, attackers could operate databases including the telephone numbers of individuals who do not actively use Binance. Security Alert: Beware of Fake Websites Impersonating Are Using Lookalike sites to steal your creedentials. We’ll never ask for your password or mfa code outside Our site. Always check the url before logging in. Qr codes should always… pic.twitter.com/xx6Ahk3t— Binance.us (@Binanceus) April 11, 2025 Beincrypto advises users to adopt additional measures, such as checking transactions directly via the binance application or official website, use multifactorial authentication and never share telephone identification data. It is strongly advised to report suspect messages to the Binance support team. Individuals are encouraged to confirm official communications by checking the anti-phishing code and carefully examining any request to call telephone numbers provided in unsolicited messages. Notice of non-responsibility Non-responsibility notice: In accordance with the guidelines of The Trust Project, BEINCRYPTO undertakes to provide impartial and transparent information. This article aims to provide exact and relevant information. However, we invite readers to verify the facts of their own and consult a professional before making a decision on the basis of this content.
