[2019-08-07] Binance Has Denied Information About Users Data Leak - page 2.

joniboini

legendary

Activity: 2170

Merit: 1789

Quote from: o_e_l_e_o on August 07, 2019, 03:59:07 PM

There are also a couple of articles which say that all these photos are from Binance phishing sites. It seems a number of Binance users were previously emailed to say their account was locked, and they were required to upload KYC documents to unlock it, along with a link in the email to a phishing site. Binance's statement on the matter is far from reassuring though. It sounds like they have no idea whether or not they were hacked, or how it might have happened.

The phishing idea afaik comes from Binance too. Basically, they're saying they don't know where do those photos comes from and said that there's no Binance digital fingerprint on all of them. Which is why, it seems likely that those photos were either submitted to fake Binance sites, fake email, or it was a leak from 3rd party provider that they hired at some point in 2018.

So yeah, pics are real probably, but where it comes from remains unclear. Of course, we won't know whether Binance is saying the truth or just saving themselves.

o_e_l_e_o

legendary

Activity: 2268

Merit: 18588

Quote from: squatter on August 07, 2019, 01:24:07 PM

Quote from: mich on August 07, 2019, 10:45:34 AM

On Wednesday, a Telegram group created by an admin under the pseudonym “Guardian M” distributed hundreds of images of individuals holding their IDs and pieces of paper written with “Binance, 02/24/19,” alleging that the data presented was hacked from the exchange.

So much for Binance's initial statement that "they all appear to be dated from February of 2018." Undecided

I'm obviously not going to link to them, but you can view the pictures online. All the ones I've seen are dated 24th February 2018. All the other articles I have read also say 2018. I suspect this is just poor reporting by coindesk.

There are also a couple of articles which say that all these photos are from Binance phishing sites. It seems a number of Binance users were previously emailed to say their account was locked, and they were required to upload KYC documents to unlock it, along with a link in the email to a phishing site. Binance's statement on the matter is far from reassuring though. It sounds like they have no idea whether or not they were hacked, or how it might have happened.

I'm a strong advocate of never doing KYC for anything crypto related, and this is why.

Harlot

hero member

Activity: 1806

Merit: 671

They have the power to do so since they don't have any evidence against them, not until their own users comes forward and they know themselves that their public information are being used by other people then we don't really have any proof that a data leak happened. They can say a lot of excuses that the leak documents was not even from Binance or they don't even have that users in them. As far as they are concerned they are just only victims of black propaganda trying to damage the reputation of their business.

BitHodler

legendary

Activity: 1526

Merit: 1179

CZ on Twitter already said that it was old news with a different spin. It definitely doesn't make it less bad, but people shouldn't jump to conclusions just because news outlets are spreading these articles.

If you sign up to an unregulated exchange, this is something that can happen. You don't know their security procedures when it comes to the KYC information people sent them, and you don't know if they outsource KYC verification.

I however don't think people care enough with how their greed is blinding them. They'll care one or two days and then move on to what they have been doing before, which is trading shitcoins and invest in IEOs.

squatter

legendary

Activity: 1666

Merit: 1196

STOP SNITCHIN'

Quote from: mich on August 07, 2019, 10:45:34 AM

On Wednesday, a Telegram group created by an admin under the pseudonym “Guardian M” distributed hundreds of images of individuals holding their IDs and pieces of paper written with “Binance, 02/24/19,” alleging that the data presented was hacked from the exchange.

So much for Binance's initial statement that "they all appear to be dated from February of 2018." Undecided

There are some irregularities that suggest something more complex is going on than a simple hack of Binance's database, though:

Quote

A third user we contacted could have been a victim of identity theft. The photograph we analyzed contained a face similar to the victims but incorrect address information.

An error-level analysis of the photo suggests that the some of the image had been modified, especially the brighter edges in the photo above. “Similar edges should have similar brightness in the ELA result,” wrote the photo forensics site FotoForensics. “All high-contrast edges should look similar to each other, and all low-contrast edges should look similar. With an original photo, low-contrast edges should be almost as bright as high-contrast edge.”

And Binance continues to say that the images aren't watermarked, therefore not taken from their database.

It looks like there may have been a leak of KYC data from a third party vendor they used in February 2018. That data may be mixed in with a larger set of data taken from other sources and modified.

carlfebz2

hero member

Activity: 2926

Merit: 722

CoinPoker.com

Quote from: mich on August 07, 2019, 10:45:34 AM

Seems real to me Undecided

Same here but Binance is trying to deny it up to death. hehe. If users do able to recognized those images where sent on KYC proceedings then theres no doubt that this leakage is legit.So whats next with Binance? known to be a secure exchange and a top tier one.

roosbit

member

Activity: 891

Merit: 43

Random coins :)

This is the very reason why people try to avoid KYC because we all know that data storage is never 100% secure no matter what they tell us!

And seeing more decentralized exchanges like idex becoming some sort of centralized exchange all requiring KYC we shall soon have no exchange to go to.

mich

legendary

Activity: 3122

Merit: 1032

#1 VIP Crypto Casino

Seems real to me Undecided

https://www.coindesk.com/binance-kyc-issue?utm_source=twitter&utm_medium=coindesk&utm_term=&utm_content=&utm_campaign=Organic%20

Binance, the world’s largest cryptocurrency exchange by trading volume, said it’s investigating the alleged leak of its customers’ verification information. The leak could affect up to 60,000 individual users who sent KYC information to the company in 2018 and 2019.

This leak is said to be directly related to a hack that nabbed 7,000 bitcoin last May.

On Wednesday, a Telegram group created by an admin under the pseudonym “Guardian M” distributed hundreds of images of individuals holding their IDs and pieces of paper written with “Binance, 02/24/19,” alleging that the data presented was hacked from the exchange. The hacker supplied CoinDesk with hundreds of photographs and we have identified a number of users who recognize the photos of their faces and personal IDs that they sent into Binance for know-your-customer purposes.

Vialaia

sr. member

Activity: 455

Merit: 250

A new post has appeared on the Internet about the hacking of the Binance cryptocurrency exchange. According to it, scammers stole the data of users of the trading platform and posted photos of documents on the Telegram group.
Binance CEO Changpeng Zhao reacted to the report of a hacker attack and promised to investigate the situation. At 12:15 UTC, he posted on Twitter an information which stated that the information about the hacking of the exchange is not true. He posted a link to similar news that appeared on the network on August 24, 2018. Then an unknown hacker claimed that he was able to get user data. He uploaded scans of documents as a confirmation. However, this information was subsequently refuted by the Binance staff.

Read more https://en.bit.news/binance-denied-information-users-data-leak/

Topic: [2019-08-07] Binance Has Denied Information About Users Data Leak - page 2. (Read 381 times)