Topic: I was hacked with the Fake Binance - page 3. (Read 598 times)

You most definitely should but thank you for bringing it to our attention because now investors who visit bct can now beware of this problem as well. Glad you didn't lose anything either that would have been a shitty situation.

The news that the world's largest exchanges - Binance, Bitfinex, Bittrex - suspended registration of new users, or tightened registration conditions, only spurred most of the newcomers to buy crypto currency (especially with such a strong fall of bitcoin) and try to register on the stock exchanges all the truth.

Of course, on this wave enterprising swindlers decided to sell accounts on stock exchanges. The price of the account today depends on the degree of verification that the user has passed and at the moment reaches 15 BTC! You will be surprised, but many did not at all confuse such a "gypsy" scheme of buying an account. Perhaps in the pursuit of the dream of becoming a bit-keen multi-billionaire, enthusiasts simply did not calculate that even after changing the password, the swindler can easily regain the account and skimp on all your hard-earned money somewhere in Thailand.

I did not lose anything, and I was fast to change my password, my authentication method, etc! But I should contact them, to just let them know!

exactly, I think we should be more careful and educate people to avoid this problem!

It was redirecting to fake one, and now what you are saying happening that is confusing! maybe Binance.com was somehow involved or were hacked or they just toke over the fake website (I am not accusing anybody, I am just confused!!!)EDIT: check the original post!

Here is the screenshot of the google search and the top ad:



The only way now I can find  to avoid this problem is to check the certification of the website and issuer by clicking on the secure icon (green) in the browser:

Binance.com has certification from comodo (the authority of issuing some of the https certification)

while the fake one has a weird certification issuer and company name was :xn--binace-zt7b

Wow, I I feel your pain, have u try contacting you binance support?

You're not the only one fell into the trap like this and not only Binance, Myetherwallet also has the same kind of phising site. Only 1 careless second you can lose everything you earned for years. You should be more careful next time to not give any free money for hackers and lazy fucking guys just wanna hack money from other people anymore.

Phishers are becoming more and more sophisticated in designing their phony websites. There's no surefire way to know if you're on a phishing site, but here are some hints that can help you distinguish a real website from a phishing site. Check the Web address. Just because the address looks OK, don't assume you're on a legitimate site. Look in your browser's URL bar for these signs that you may be on a phishing site:

1 - Incorrect company name. Often the web address of a phishing site looks correct but actually contains a common misspelling of the company name or a character or symbol before or after the company name

2- A missing forward slash. To verify that you're on a legitimate site, make sure a forward slash ( / ) appears after ".com" in the URL bar.

This is happening a lot and due to this when you login to original binance site you get this days this Safety Risk Notice. They have mentioned some points which as a user needs to take care while login to the exchange. Consider it as a important safety measure which they are notifying their users right in the front page after login happens successfuly.

Are you sure the fake link you provided is a phishing link? I opened it on a VM and it just redirects me to the real binance, but with a referral link.

302 redirect brought me to binance.com/?ref=40581024

Phishing sites started to use this method, using non latin characters, that look like latin characters, on domain names to fake the site. Beware about this method on all sites you use for trading and instead of google search or clicking links, manually type the site names.

Today, to login binance, I used google search (lazy ass) and click on google top ad (stupid of me). I check https and certification was secure and the name (nothing wrong there), and after entering my password and code for two step authentication, it displayed this massage:

Due to the implementation of new security measures you will be able to login 24-48 hours later.
Sorry for the inconvenience


I got suspicious, so I typed the address and went back and googled the massage and I came across this page. Apparently the displayed name in the url with valid certification has a small dot under n. So I was hacked, lucky me I change my passwords and my authentication method asap. But It was headache and normally it is not easy to spot this. You can also copy past the fake binance.com in a notepad and see that original url is : (https://www.xn--binace-zt7b.com/).

I know I was sloppy (even being normally paranoid about everything).
I am putting this here to stop anybody losing his BTCs.

EDIT:
Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!


(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!

This redirecting happened recently!