Topic: Wrong BTC Adress, copied from Binance's Dashboard - page 3. (Read 742 times)

So the error is still occurring ?

Binance is one of the highly reputed exchanges and I would rank them number 1. They have a lot of other businesses too and they are very serious here. It is not a good idea to expect Binance is doing shit or trying to scam 0.10 BTC.
You havee been attacked by copy paste malware, It can change your copy address to another.

They don't need to be crypto related. Any extension can include any code in it, so unless you have personally read all the code of what you extensions you are installing, you have no idea what they actually do, only what they claim to do. They could redirect you to phishing sites, steal your usernames and passwords, alter your clipboard, any number of things. We've seen people lost their bitcoin because of malicious code in everything from price tickers to ad blockers. There was even a case of clipboard malware being hidden in software which gave you custom backgrounds. Nothing to do with crypto, and seemingly innocuous, resulting in people losing all their money.

Your crypto activities should remain separately from your general online activities to help prevent things like this happening. The browser you use for crypto should be used for nothing else, and have minimal extensions on it - uBlock Origin, HTTPS Everywhere, Privacy Badger, and maybe NoScript if you can, is probably all you need. If you can use an entirely separate device for your crypto activities, even better. If you can't, then you should think about using a hardware wallet to protect against clipboard malware.

That's a really common malware. And trust me, this isn't an issue with Binance's "copy address button". If this was the case, we would see thousands and even millions worth of BTC being reported stolen, which is not the case. Binance is one of the biggest exchanges in the world and they move millions daily.

Like others said, you either have an infected PC (downloaded a "bad" software) or an infected browser (with enough permissions, extensions or scripts - usually used with Tampermonkey or such - can do basically anything in the websites you visit. E.g: change the button JS to copy an predetermined address generated by a hacker). Clean your device, be more careful and move on.

Ohhhh damn man, it already happened with you  tbh i thought that i was the only one

Actually the op makes a good point most of the copy paste malware would effect the CTRL+C + CTRL+V key combinations the fact that pressing the button inside the binance platform would change the address but not when he is  doing the key commands above himself is rather strange.

I wonder if this is a new type of malware that is targeting the browser function for Binance copy address.

OP I would scan your machine at boot time this type of scan will take a fair amount of time but it may bring back something.  

Other than that did you download anything recently and install it?  any browser application or software?

This would be the first time I have seen the copy paste bitcoin stealing malware not effect the key commands but actually target the press of the button from Binance.

I'm afraid OP it looks like you have lost your funds.

Try and scan your computer with malwarebyte. This thing has happened to me before in the past. I tried to purchase airtime using btc on bitrefill and I discovered that the address generated is different when I pasted it. Luckily for me, I have this attitude of double checking an address anytime I'm making transaction before completing it. Sorry for your lost

Common paste swap virus attack.

This is why it's important to use a secure operating system, ideally something that will only run signed applications, e.g. MacOS.

There is no point warning other people about your loss since these attacks have been going on for decades now and people still get duped by it.

You should ALWAYS double check the device, or ideally do a penny test if you're still not sure, since its also possible for these tools to modify the display too.

Whether crypto-related or not the thing is one of your installed browser extensions or one of your installed applications has malware with clipboard hijacker and you should get rid of that. Good thing that you already reformat your device, the sad thing is those funds cannot be recovered.

This should serve as a lesson to you and to anyone here that double or triple check the receiving address before you click the send button because there's no turning back once done. It will only take several seconds to check the address, and that could save lives if those seconds of time were used.

I will record it again, with all those infos / ctrl + z / ctrl + v / ctrl + c

I'd see it already, and until now the balance hasn't move or touched. I'm confuse on what is really going on.

Malware these days are good enough that even the experts and experienced ones can hardly distinguish it from their devices that's why the account of every action we take over should be us coz no one's really accountable for that, not even the exchange. So if it's true that you have been attacked by one of these malware or some kind of virus, might as well be observant the next time and this should serve a lesson for you.

I'm confuse, really really confuse right now coz if I were going to send a huge amount in btc I would definitely check the address I'm sending into however he did not do it. Watching the video made me more confuse coz  there is no mic for you to speak so we will just be basing on your pointer gesture. You did able to copy the amount and pasted it in the address bar and it pasted correctly, not the case for the time you copied the address of yours but you did not let us see that you pasted it using your mouse pointer, you did was a keyboard shortcut. I'm not telling you that you just made it in hope to get a refund from Binance.

CTRL+V is not the same as CTRL+Z. I tried it after watching the video and it works. I can make the fake address out of my screen after hitting CTRL+Z and not CTRL+V.
So now can you get this done with mouse only? of course you can't coz you said you already formatted your computer and the malware was out, right?

THE SHOW IS OVER MAN.

Your first mistake was not going back to check the address you copied and from the original source you copied from, it is very important when you copy an address you try and recheck the first and last letters/numbers of the wallet, and again somebody mentioned email confirmation, Binance always send email confirmation before any transaction is approved, these are things should look out for against next time, but for this particular transaction I don't think you will get it back, very sad tho.

  So do the error is occurring again, even after reformatting your computer?
  In this case it can be a "middle man attack", Someone targeting your computer following your connection



  I'm sorry to tell you that the only way to recover your bitcoins would probably to found the owner of the address, and then pirate him in return to get your funds back

None of them are crypto-related unfortunatelly

LittleBigIvan, that clipboard malware is very likely linked to your browser, some add-on or extension detects that you are in Binance and that you are copying the deposit address. I don't know what antivirus software you are using, but most should successfully block such things, so your AV is not protecting you as it should, or you ignore warning and allow that malicious application access to your system.

What you can do right now is scan your computer with the free version of Malwarebytes, and also with that AV you have (check virus definitions/updates before scan). Also good&free program from MB - Adwcleaner.

All this will not help you get back what you lost, but you can try to find out exactly what happened.

And these malware don't just change any text to address, they recognize the coin address and replace with respective address while they leave other text unchanged. If you mistakenly sent them, there's no way you'll get those coin back. So, it's a costly way to learn to carefully confirm the address.

Its really possible  that this is what happen to him.

That answered in binance is normal thing they are not the one who's responsible for the lost amount . You should always double check  the address before sending money.

---

You can easily notice the difference between that address if you give at least second's to check it.

19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC
13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di

So sorry to hear about this OP and I know it is too late to do anything right now but I hope you know now every time you do Bitcoin transactions to double and even triple check manually,,, I always use copy paste but I see the first 5 characters to make sure it is the same before I confirm and I do it many times cause I am so paranoid!

And if one transfers to 3rd party services he can also make a habit from saving a print screen with the address they show in their page to be somewhat able prove them guilty if that's the case (but 99.9% chance it's not the case).

That is why, you always need to double check your address before you confirm the transaction, no matter how strong or genuine your OS or security it, it is still breachable because in the world of IT, there's no system that is safe. Meaning, you should be personally responsible and be observant. But you can reduce the risk of it happening again, install a genuine anti virus and prevent yourself from downloading from sites that aren't trusted. Make sure that you don't have any plugins even in your browser that causes this issue.