Topic: I was hacked with the Fake Binance (Read 598 times)
Be careful with your property because there are now a lot of scammers by using site addresses like Binance to cheat investors. Use bookmarks and 2FA security to protect your account, which is the best way to avoid property theft.
Hm, it's very well thought out. My computer wouldn't let me to that site at first place, but people could be fooled very easily with this one.
I'm suspicious about everything and this is a good reason why.
I'm suspicious about everything and this is a good reason why.
These scammers are turning to pros. It's really bad to see this nor help the crypto.
Those two dots are very hard to see. I would fall for that.
Those two dots are very hard to see. I would fall for that.
Holly molly I would never have noticed those two dots. Scammers getting more and more creative. This is just a reminder to be sharp, always.
So simple, but I bet that they have scammed a lot of people with this one.
So simple, but I bet that they have scammed a lot of people with this one.
I'm just curious how these phishing sites succeed when binance requires 2FA to login? Even if they get your password they still need access to your phone too.
It is always better to be careful logging into your account using Google. Save the URL somewhere and make use of most times
Thanks OP for sharing your experience. I've been reading up all sorts of things and it freaks me out how easily can ppl get hacked. How long more to read before I feel safe to invest? 
You are never safe in the internet, but you can make the cost and effort of being hacked high!
You're not the only one fell into the trap like this and not only Binance, Myetherwallet also has the same kind of phising site. Only 1 careless second you can lose everything you earned for years. You should be more careful next time to not give any free money for hackers and lazy fucking guys just wanna hack money from other people anymore.
This is why it is important to always keep those kind of sites bookmarked, this should be done for all the websites where you can transact money or where you have an important account, so keep bookmarks of your email providers, paypal, your bank, the exchanges you use, your wallets and bitcointalk that way you will avoid the most dangerous phishing sites.
Thanks OP for sharing your experience. I've been reading up all sorts of things and it freaks me out how easily can ppl get hacked. How long more to read before I feel safe to invest?
next time you should be more careful in accessing all trading sites.
before binends, poloniexes and bittrex were the two big makets that often got similar problems.
I read a lot of this.
hopefully you get a lot of experience from this.
support binends are the best at the moment.
but I'm not sure if I would accept such a thing for their site.
before binends, poloniexes and bittrex were the two big makets that often got similar problems.
I read a lot of this.
hopefully you get a lot of experience from this.
support binends are the best at the moment.
but I'm not sure if I would accept such a thing for their site.
Can someone explain why when you type in binance on google or other similar sites the first link or two links that shows up on the top are the google ads links with the supposed site? Why has those not been taken down? Because if you are not careful, you could easily click on it like the original poster.
Personally I think google does things automatically, unless we report it and they investigate it!
Can someone explain why when you type in binance on google or other similar sites the first link or two links that shows up on the top are the google ads links with the supposed site? Why has those not been taken down? Because if you are not careful, you could easily click on it like the original poster.
It is not something new,hackers use Google ads to place their phishing sites on number one search results based on key words.Since cryptocurrency is very popular these days,many users lost their money by downloading fake wallets like Electrum or to log in to fake sites.Unfortunately "mighty" Google do not check to whom they sell advertisements,it is important for them to take money first and for deceived users they have report page where you can report phishing sites.
https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en
https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en
To avoid having to log in to fake websites of commercial sites, type the name of the trade page for the first time then save the bookmark of the browser you are using and the next time you log into the merchant site just open the bookmark and log in to your account. That's one way I usually use to avoid logging in to fake business sites.
I would suggest that you should bookmark the real binance site to avoid again logging into these phishing site that could take all your investment injust an instant or it can also hack your email if you have same password with it. Also try checking the coinmarketcap to see the legit sites of exchangers for your references
I cannot believe something like that can happen! So basically google offers you to click on a website where Binance is written with Korean alphabet where the "i" of Binance has a little dot below which is not an "i"? And this send you to the phishing site, right?
I feel Google should be held accountable for that...
I feel Google should be held accountable for that...
right, that "i" was two days ago, which was mentioned in that blog! For me the dot was below n and it fooled me!
Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!
(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!
This redirecting happened recently!
Very clever. This way they can carry out a sort of "plausible deniability", claiming it has always redirected only to the correct sire. And they can perhaps avoid losing their google ranking and indexing. And whenever they feel in the mood again they can switch back the link yo their phishing site.
Exactly, i think they can hack people time to time and collect some coin here and there! I hope people read and take necessary precautions.
I cannot believe something like that can happen! So basically google offers you to click on a website where Binance is written with Korean alphabet where the "i" of Binance has a little dot below which is not an "i"? And this send you to the phishing site, right?
I feel Google should be held accountable for that...
I feel Google should be held accountable for that...
right, that "i" was two days ago, which was mentioned in that blog! For me the dot was below n and it fooled me!
Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!
(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!
This redirecting happened recently!
Very clever. This way they can carry out a sort of "plausible deniability", claiming it has always redirected only to the correct sire. And they can perhaps avoid losing their google ranking and indexing. And whenever they feel in the mood again they can switch back the link yo their phishing site.
Well that is very fatal how you transfers money to the website without ensure link before .
And i think any exchange now requires turn auth f2a before login . Deposit and withdraw .
Sorry for your loss dude.
If you do try to read up you would able to find out that OP didnt lose up money since he did able to change password it directly when the time he realized that he was being phished by that site.I have checked now on google search and same as being said by most people here it is directly going to the original site with referral link.And i think any exchange now requires turn auth f2a before login . Deposit and withdraw .
Sorry for your loss dude.
Those phishing sites usually appear in the top ads of google so if you always use a site, always bookmark it especially if it involves money because these sites are usually the target of phishers. There have been many phishing attempts every where whether it is in e-mail or in google so we should always be vigilant when it comes to sites and triple check the URL. MEW has a warning always at the top because there are so many victims of being phished copying their site. There is a chrome extension called Cryptonite by Metacert. When you access a site, a green bar appear at the top if it is a verified crypto site. You can search it in the chrome webstore.
If we do know these indications we are most likely not to be easily hacked or phished by somebody.Talking about MEW i do really love their caution message pop-up on the site which is really helpful on people to keep reminders on accesing the legit site and avoiding phishing sites. You can take revenge, now that we see that philsting domain redirects to a ref link of the hacker, you can report that link to Binance to investigate that referral link owner. Or this story is just a fabricated so you can insert your ref link?
Are you sure the fake link you provided is a phishing link? I opened it on a VM and it just redirects me to the real binance, but with a referral link.
302 redirect brought me to binance.com/?ref=40581024
302 redirect brought me to binance.com/?ref=40581024
The ref number keep changing, too. The story is true, I will report the binance.com, ASAP. Here is the explanation for redirecting I posted yesterday:
Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!
(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!
This redirecting happened recently!
Jump to: