Home Articles Categories Download About Register Binance
中文 EN JA KO
Security

How to Protect Yourself from Phishing Scams Targeting Binance Users

· About 15 min

Phishing Is One of the Biggest Threats in Crypto

In the cryptocurrency space, phishing attacks are among the leading causes of asset loss. Attackers create fake websites that look nearly identical to the official Binance site, or impersonate Binance by sending fraudulent emails and messages, tricking users into entering their account credentials and verification codes to steal account access and assets.

These attacks succeed time and again because phishing websites and emails have become increasingly convincing, making it very difficult for average users to tell them apart at a glance. Learning the right identification methods and preventive measures is essential for every Binance user.

How to Identify Phishing Websites

The goal of a phishing website is to make you think you're visiting the real Binance site, so you'll enter your actual login credentials on the fake page. Here are the key methods for identifying phishing sites.

Carefully Check the URL

This is the most direct and effective method. Binance's official website URL is www.binance.com. Phishing websites typically use domains that look very similar but are slightly different, such as:

  • binancce.com (an extra letter "c")
  • b1nance.com (digit "1" replacing the letter "i")
  • binance-login.com (extra words added)
  • binance.com.xx (additional domain appended)

Every time you visit Binance, carefully verify the URL in your browser's address bar. We recommend bookmarking the official Binance website and always accessing it through your bookmarks to avoid errors from manual URL entry.

Check the SSL Certificate

The legitimate Binance website uses an HTTPS encrypted connection, and the browser address bar will display a lock icon. Clicking this icon lets you view the website's SSL certificate information and confirm it was issued to binance.com.

However, be aware that phishing websites can also have SSL certificates, so HTTPS alone is not sufficient to confirm a site is legitimate — always combine it with a URL check.

Look for Page Details

While phishing websites closely mimic the appearance, they often have flaws in the details. Common giveaways include:

  • Abnormally slow page loading
  • Some links that don't work or redirect to incorrect pages
  • Spelling errors or awkward grammar in the text
  • Missing copyright information or legal disclaimers at the bottom of the page

Use Binance's Official Verification Tool

Binance provides an official verification channel called Binance Verify, where you can enter a URL, email address, phone number, or social media account to check whether it belongs to an official Binance channel. When in doubt about a link, always verify through this tool before taking any action.

Set Up an Anti-Phishing Code

The anti-phishing code is an important security feature Binance offers to help you distinguish genuine emails from fakes.

What Is an Anti-Phishing Code

An anti-phishing code is a custom text string you define. Once set, every email Binance sends you will display this text. If you receive an email claiming to be from Binance but it doesn't show your anti-phishing code, the email is most likely fraudulent.

Setup Steps

  1. Log in to the Binance website or app
  2. Go to Profile and select Security
  3. Find the Anti-Phishing Code option and click to enter
  4. Enter the code you want to set (choose something you can easily recognize but others cannot easily guess)
  5. Complete verification and save your settings

After setup, you can trigger a test email (for example, by changing a minor setting to prompt an email notification) to confirm your anti-phishing code is displaying correctly.

Usage Tips

  • Don't make the anti-phishing code too simple, like "123456"
  • Change it every few months
  • Whenever you receive any email from Binance, immediately check whether it contains your anti-phishing code

Protecting Against Social Media Scams

Beyond phishing websites and emails, social media is another major battleground for scammers.

Common Types of Social Media Scams

The first type is impersonation of official Binance accounts. Scammers create accounts on Telegram, Twitter, WeChat, and other platforms with names and profile pictures nearly identical to Binance's official accounts. They proactively contact users, using pretexts like "event rewards," "account anomalies," or "security upgrades" to lure users into clicking phishing links or providing account information.

The second type is fake customer support. In various cryptocurrency community groups, scammers impersonate Binance support, claiming they can help resolve account issues while coaxing users into providing passwords, verification codes, and other sensitive information. Remember: Binance's official support will never proactively reach out to you on third-party social platforms.

The third type is airdrop scams. Scammers send links to fake airdrop events, claiming you need to connect your wallet or log in to your Binance account to claim the airdrop. Once you enter your credentials on the fake page, your account is compromised.

The fourth type is impersonating celebrity traders. Scammers pose as well-known traders or influencers, promising high returns from copy trading, and trick users into transferring funds or handing over account access.

Key Prevention Tips

  • Binance will never contact you via Telegram or other messaging apps to ask for passwords or verification codes
  • Never click on links sent through unofficial channels
  • Don't join suspicious "official Binance groups"
  • Be highly skeptical of any offers promising "guaranteed returns" or "free coins"
  • Use the Binance Verify tool to confirm identities

Daily Anti-Phishing Security Habits

Developing good security habits can fundamentally reduce your risk of falling victim to phishing attacks.

Browsing Habits

  • Bookmark the official Binance website and always access it from your bookmarks
  • Don't click on search engine advertisement links to visit Binance
  • Don't log in to Binance through links sent by others
  • Use the official Binance app for operations

Email Handling Habits

  • Always check for your anti-phishing code in every email first
  • Don't click links directly in emails — instead, manually type the official URL in your browser
  • Be wary of emails that create urgency, such as "act now or your account will be frozen"

Software Security Habits

  • Keep your operating system and browser up to date
  • Install reliable antivirus software
  • Don't log in to your Binance account on public computers
  • Regularly clear your browser cache and cookies

Phishing tactics are constantly evolving, but as long as you stay vigilant and maintain good security habits, you can effectively protect your account and assets. When in doubt, always take one more step to verify — it's better to be cautious than to act rashly.

Android: direct APK install. iOS: requires overseas Apple ID
Download App Register Binance

Related Articles

How to Protect Your Binance Account from Being Hacked
How to Enable Two-Factor Authentication (2FA) on Binance
What Is Google Authenticator and Why You Need It on Binance
Register Binance Now for Fee Discounts Register through our link to get 20% permanent fee discount
Register Binance Download App