#空投防骗手册 Fake Official Website Phishing Attack
◦ Scheme: Forging Binance official website or partner project pages to induce users to input their wallet private keys or mnemonic phrases.
◦ Case: In 2024, a fake Binance Alpha points airdrop event used a similar domain name (e.g., binance-fake.com) to defraud users of their assets.
◦ Prevention:
▪ Manually enter the official website address, avoid clicking links in emails/SMS;
▪ Check the domain suffix (e.g., .com changes to .cn or .net should be immediately blacklisted);
▪ Only recognize Binance official blue V certified accounts and pinned links.
2. Authorization Theft Trap
◦ Scheme: Under the pretense of “authorization required to receive airdrop,” induce users to connect to malicious smart contracts, clearing their wallets with one click.
◦ Case: In 2025, a fraudulent project induced users to authorize through “airdrop tokens,” resulting in over $2 million in assets stolen.
◦ Prevention:
▪ Use revoke.cash to regularly check and revoke unnecessary authorizations;
▪ Test authorization with a small wallet while keeping large wallets offline;
▪ Be cautious of the “Approve” button, confirm the legality of the contract address.
3. Fake KYC Information Theft
◦ Scheme: Impersonating Binance customer service to request submission of ID cards, facial information, etc., for black market trading or extortion.
◦ Case: In 2024, a “compliant project” collected user KYC data and then absconded, leading to low-priced ID packages appearing on the black market.
◦ Prevention:
▪ Real KYC will never ask for private keys or mnemonic phrases;
▪ Complete KYC only on platforms like Binance, Coinbase, etc.;
▪ Add watermarks (e.g., “for XX project use only”) when submitting documents.
4. Fake Customer Service Private Message Scam
◦ Scheme: Claiming to be “Binance customer service” in private messages on Telegram, Discord, etc., requesting mnemonic phrases under the pretext of account issues.
◦ Case: In 2025, fake customer service falsely claimed that users needed to verify their identity to participate in an airdrop, stealing mnemonic phrases and transferring assets.
◦ Prevention:
▪ Real customer service will not request sensitive information via private message;
▪ Official contact information should only be obtained through the official website or in-app channels;
▪ If encountering suspicious private messages, verify in the community first.
5. High Yield Airdrop Trap
◦ Scheme: Promising “staking yields of 1000% annually” to attract users to deposit and then abscond with the funds.
◦ Case: In 2024, a fraudulent Binance partnership project lured users to stake with high returns.