Binance Risk Sniper
--
Scam warning: Fake SMS Spoofing Attacks have been upgraded
The Trap: Once the victim calls, scammers instruct him/her to move funds to a “safe” wallet – one that is actually controlled by the scammers. They provide a seed phrase via email, another SMS, a fake website, or even during the call. Believing his/her funds are secure, the victim makes the transfer, only for the scammers to immediately drain the wallet.
A Real-life Example
Trusting the message, Jack called. Not long after, he received an official password reset email from Binance. Unbeknownst to Jack, the email was maliciously triggered by the scammers – simply clicking “Reset Password” on the login page – to add pressure and make their story more convincing. By timing it just right, they made Jack believe his account was truly under attack.
On the call, a scammer posing as a Binance employee shared with Jack a recovery seed phrase purportedly linked to his Binance account and urged him to quickly transfer his funds to the wallet associated with this seed phrase to keep his funds safe. What Jack didn’t know was that the seed phrase had been created by the scammer and associated with the wallet the criminal controlled rather than linked to Jack’s real account. If he followed through, the funds would go straight into the scammer’s wallet.
Refer to Binance risk blog: https://www.binance.com/en/blog/security/web3-security-preventing-sms-spoofing-attacks-2768053391023542157
The Trap: Once the victim calls, scammers instruct him/her to move funds to a “safe” wallet – one that is actually controlled by the scammers. They provide a seed phrase via email, another SMS, a fake website, or even during the call. Believing his/her funds are secure, the victim makes the transfer, only for the scammers to immediately drain the wallet.
A Real-life Example
Trusting the message, Jack called. Not long after, he received an official password reset email from Binance. Unbeknownst to Jack, the email was maliciously triggered by the scammers – simply clicking “Reset Password” on the login page – to add pressure and make their story more convincing. By timing it just right, they made Jack believe his account was truly under attack.
On the call, a scammer posing as a Binance employee shared with Jack a recovery seed phrase purportedly linked to his Binance account and urged him to quickly transfer his funds to the wallet associated with this seed phrase to keep his funds safe. What Jack didn’t know was that the seed phrase had been created by the scammer and associated with the wallet the criminal controlled rather than linked to Jack’s real account. If he followed through, the funds would go straight into the scammer’s wallet.
Refer to Binance risk blog: https://www.binance.com/en/blog/security/web3-security-preventing-sms-spoofing-attacks-2768053391023542157
Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.
