Author

Topic: Wrong BTC Adress, copied from Binance's Dashboard (Read 742 times)

hero member
Activity: 1414
Merit: 542
September 18, 2024, 07:08:32 AM
#74
And with this one, I opened up a thread regarding this issue, [PSA]: Binance warns of threat about Clipper Malware.

Binance made aware that there are of their customers falling for this trick and so they issued a warning already. And the source of this malware is when someone downloaded a unofficial apps and plugins especially on Android devices.

So for crypto enthusiast, we should only downloading software updates to official apps.
hero member
Activity: 1220
Merit: 612
OGRaccoon


Looks like the hacker address

13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di

Has has funds in from Binance and Crypto.com and also sends funds to Coinpayments.net.

You should contact them and share this report with them since they clearly must have account with Binance. Crypto.com and Coinpayments.net.




They also sent funds into Binance also so they must have account on Binance.

Honestly the fact that Binance can't even audit this stuff when it's clear as day the money went back into a Binance account is un-real..

Track link : https://www.breadcrumbs.app/reports/12548

You can track the money on Breadcrumbs.app

newbie
Activity: 16
Merit: 0
Hey there guys, im creating this topic just to share and "maybe discuss" my case with Binance's support;

At the moment i didnt knew what exactly happened, but, i've copied the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di
from the "Copy Address button" and deposited 0.10 BTC "That's a high value for me"

At that point, everything is ok.
Been waiting 10~20 minutes, and my balance haven't updated.
Ok, something wrong is happening here
For instinct, i've just checked my wallet again, and, for my hopelessness, my real BTC wallet is 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC

The "Copy Adress is automatically copying the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di"

PS: I've also recorded with OBStudio what just happened; https://youtu.be/EqUqI6eaU6I

Ok, that's a problem. since i have already deposited 0.10 BTC in ANOTHER wallet.
No other way to solve it, i had to open a ticket.
And that's the answer i've received;


Binance's answer ;
Dear Ivan,

Thanks for reaching out.

We are sorry for what you encountered. Please go through following tips immediately before you take any further action.

1. Install anti-virus software to scan/kill Trojan and other viruses as soon as possible;
2. Disable plug-in/extensions for your browser, trading bot or third-party APP and uninstall unknown software on your computer;
3. Change the password for your devices and accounts;
4. In a critically dangerous situation you should format your hard drive and reinstall the OS (operating system) on your computer (If you are not sure how to do this, seek professional assistance);
5. Consider seeking help from an information security expert to determine how to achieve the best possible level of security;

Thank you for your understanding.

Best Regards,
Binance Support Team


My reply ;

Right.

But, what about my 0.10 BTC's?
How can i get it back?


Binance's reply ;

Dear Ivan,

Thank you for your follow-up.

As shown in the website, your BTC deposit address should be 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC. If the address changes after you copy and paste it, you will need to check the security status of your device. You can refer to the instructions offered by Elaine before.

In addition, I regret to tell you that, given that the destination address does not belong to Binance, we are not able to freeze any funds/accounts tied to the recipients.

If you are interested in pursuing this case, we recommend that you file a police report or cyber-crime report so that you may receive assistance as soon as possible.

Your understanding is much appreciated.

Kind regards,
Binance Support Team



The point is;
I have already formated my computer, downloaded the official .ISO from microsoft, paid for the OS, the anti viruses is ok, nothing have been detected.
Do you think the Binance's support is right in that case?

I agree that i should have paid more attention, yes, but, the "error" is occurring only on the "Copy Address button", not in my Ctrl + C / Ctrl + V


That's it guys, thank you for reading.









This haunts me and makes me sad to this day.  Cry Be careful, everyone, this attack isnt new and has been happening since the 'beginning'.

https://beincrypto.com/binance-alerts-users-about-clipper-malware/
newbie
Activity: 16
Merit: 0
Clipboard malware already come from years ago, and who get usually attacked is people who not really concern about recipient address when they want to send their crypto. AT first maybe sorry for your loss, but it is better to clean your computer for now and in next time make sure to see address that we want to send the coins, in past after that things attack a lot of people, before i send my coins, usually i see multiple times first 5 digit and last 5 digit address that i want to copy and paste.



Eh...  i've learned it @ the worst way ever..  Undecided
jr. member
Activity: 140
Merit: 2
Interestingly, I have never met such a person. Alternatively, it may be caused by the fact that you have some kind of virus on your computer.
full member
Activity: 902
Merit: 112
your 0.10BTC is now value approximately 6000$ it's very sad thing with happened u. if you had to double check which address showing in binance dashboard and ur copy paste address, provably it would not happen. 
legendary
Activity: 2716
Merit: 1092
Leading Crypto Sports Betting & Casino Platform
Clipboard malware already come from years ago, and who get usually attacked is people who not really concern about recipient address when they want to send their crypto. AT first maybe sorry for your loss, but it is better to clean your computer for now and in next time make sure to see address that we want to send the coins, in past after that things attack a lot of people, before i send my coins, usually i see multiple times first 5 digit and last 5 digit address that i want to copy and paste.
hero member
Activity: 2422
Merit: 875
I really miss those 0.10btc..

Also, im glad that binance have solved this "button"

I can very well understand your feelings. You lost those 0.1 btc in April 2020, when the price of bitcoin was near 4000$. Now when you see the bitcoin price well over 60,000$, you should miss this 0.1 btc.  It is not  small amount in the present times.

Sometimes we learn the lessons but they are too costly. Feeling sad for you Sad
newbie
Activity: 98
Merit: 0
 Smiley before you do the processes you have to repeat it before confirming because with a digital currency we don't know where you went wrong you should make sure and just be a little careful ,, it's a pity we will lose what we worked so hard for in just one mistake especially in  newcomers who don't know much about crypto currency need to read first before entering and need to understand all your processes, that's all, check first before you confirm.
full member
Activity: 378
Merit: 102
It is a pity that a disaster has happened to you, I am concerned about this incident.
This is a lesson for all of us to research before sending Bitcoins. You should also follow the advice given by the Binance team as soon as possible.
legendary
Activity: 2394
Merit: 2223
Signature space for rent
I really miss those 0.10btc..

Also, im glad that binance have solved this "button"
Sorry for your loss, Bitcoin is irreversible and that's why you shouldn't hope to get it back once that was moved to the hacker's wallet. The problem didn't exist on the Binance copy button really. The people are your clipboard was hacked hence whatever you copy from Binance it's turn into a hacker's address during pasting somewhere. You should take a lesson from your past mistake, always verify your address multiple times either it's your copied address or someone else's before pressing the send button. Also, don't visit suspicious sites from the device like porn, or don't install any application if you aren't sure that's safe. All the senses should work properly during sending Bitcoin to other wallets.
newbie
Activity: 16
Merit: 0
I really miss those 0.10btc..

Also, im glad that binance have solved this "button"
sr. member
Activity: 2828
Merit: 357
Eloncoin.org - Mars, here we come!

That's it guys, thank you for reading.





You should look up clipboard hijacking, and check your laptop for malware/virus.


Hackers have made special tools that detect BTC addresses when copied to clipboards and replace it with their own.


In the future double-check the address before you actually send the payment.

checkout https://sendbit.io they prevent clipboard hijacking and even give you private keys for each address you own.


Sorry for your loss buddy.



It is really sad and frustrating when you are relying about copy pasting from the site itself knowing that you are safer but in the end?you will end up being a victim of this hackers.

I Suggest also to OP that make a Copy of His wallet address in other form or even in His Bitcointalk account so whenever he need to copy and pasting at least he has a basis of double checking to find if the one is true or changed by hackers and looking the comparison of those addresses?it is very obvious that they are different so i don't know why Op did not noticed that in the first place.
member
Activity: 84
Merit: 22
Hey there guys, im creating this topic just to share and "maybe discuss" my case with Binance's support;

At the moment i didnt knew what exactly happened, but, i've copied the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di
from the "Copy Address button" and deposited 0.10 BTC "That's a high value for me"

At that point, everything is ok.
Been waiting 10~20 minutes, and my balance haven't updated.
Ok, something wrong is happening here
For instinct, i've just checked my wallet again, and, for my hopelessness, my real BTC wallet is 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC

The "Copy Adress is automatically copying the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di"

PS: I've also recorded with OBStudio what just happened; https://youtu.be/EqUqI6eaU6I

Ok, that's a problem. since i have already deposited 0.10 BTC in ANOTHER wallet.
No other way to solve it, i had to open a ticket.
And that's the answer i've received;


Binance's answer ;
Dear Ivan,

Thanks for reaching out.

We are sorry for what you encountered. Please go through following tips immediately before you take any further action.

1. Install anti-virus software to scan/kill Trojan and other viruses as soon as possible;
2. Disable plug-in/extensions for your browser, trading bot or third-party APP and uninstall unknown software on your computer;
3. Change the password for your devices and accounts;
4. In a critically dangerous situation you should format your hard drive and reinstall the OS (operating system) on your computer (If you are not sure how to do this, seek professional assistance);
5. Consider seeking help from an information security expert to determine how to achieve the best possible level of security;

Thank you for your understanding.

Best Regards,
Binance Support Team


My reply ;

Right.

But, what about my 0.10 BTC's?
How can i get it back?


Binance's reply ;

Dear Ivan,

Thank you for your follow-up.

As shown in the website, your BTC deposit address should be 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC. If the address changes after you copy and paste it, you will need to check the security status of your device. You can refer to the instructions offered by Elaine before.

In addition, I regret to tell you that, given that the destination address does not belong to Binance, we are not able to freeze any funds/accounts tied to the recipients.

If you are interested in pursuing this case, we recommend that you file a police report or cyber-crime report so that you may receive assistance as soon as possible.

Your understanding is much appreciated.

Kind regards,
Binance Support Team



The point is;
I have already formated my computer, downloaded the official .ISO from microsoft, paid for the OS, the anti viruses is ok, nothing have been detected.
Do you think the Binance's support is right in that case?

I agree that i should have paid more attention, yes, but, the "error" is occurring only on the "Copy Address button", not in my Ctrl + C / Ctrl + V


That's it guys, thank you for reading.










You should look up clipboard hijacking, and check your laptop for malware/virus.


Hackers have made special tools that detect BTC addresses when copied to clipboards and replace it with their own.


In the future double-check the address before you actually send the payment.

checkout https://sendbit.io they prevent clipboard hijacking and even give you private keys for each address you own.


Sorry for your loss buddy.


hero member
Activity: 2128
Merit: 532
FREE passive income eBook @ tinyurl.com/PIA10

Already did it, but it keeps happening on this computer, but it arent happening on my notebook, for example, goddamn crap technology i will throw this computer away on the street

Looks like a complete system reformat is the last resort. Backup your files and perform a clean reinstall.

Guaranteed you won't find those buggers on the PC anymore.
newbie
Activity: 16
Merit: 0

Thanks. I checked and they seem to be legit.

And I've also logged into my account and confirmed the Copy button is not compromised (i.e. copied address is the same when pasted).

There's a chance your system has been compromised. Run a malware/ spyware scan on your system using some tools like Malwarebytes and check if anything shows up.
Right, follow this instruction from @UserU, your system was compromised and the only solution is to remove it. If you still failed to found the malware and the problem still occur, try to reformat your personal computer and start to avoid installing unnecessary applications including chrome extensions.

Already did it, but it keeps happening on this computer, but it arent happening on my notebook, for example, goddamn crap technology i will throw this computer away on the street
legendary
Activity: 2268
Merit: 18711
I try other way but still the same and solution to restart my computer and malware gone, you need to restart your computer first.
I don't know if there is some meaning being lost here in a language barrier, but restarting your computer (as in shutting it down and booting it back up) is not going to remove any malware. You need to reformat it (as in, wipe the hard drive and reinstall your operating system and all your programs from scratch).

If you were experiencing the effects of clipboard malware, and these effects disappeared after a restart, that doesn't mean the malware has been removed. There is some clipboard malware which does not change the copied address every time. Sometimes it will deliberately not change the address, as a way to disguise itself, make it so that if people are double checking the address (as you always should!) that they will think it is correct, make people think it has been removed, and so forth.

If you previously had clipboard malware and haven't reformatted your computer, there is a good chance you still have it. Make sure you double and triple check every address.
hero member
Activity: 1722
Merit: 508
I have the same cases with you but my problem with etherwallet address because when I want to copy my wallet but after paste I got wrong wallet because got malware with my computer, I try other way but still the same and solution to restart my computer and malware gone, you need to restart your computer first.
legendary
Activity: 2268
Merit: 18711
Thanks. I checked and they seem to be legit.
Most extensions which include malicious code seem to be legit, otherwise nobody would download them. They have to perform some actual function which people want, and perform it properly, for the extension to be widely downloaded and not immediately uninstalled because it doesn't work. Seeming legit does not mean there isn't clipboard or other malware buried somewhere in the extension. Unless the extension is open source and you can review the code, then installing it is a risk, regardless of how legit it seems.

There are very few extensions which you actually need to install, and all of them should be open source and have GitHubs you can review. Extensions like uBlock Origin, Privacy Badger, HTTPS Everywhere, NoScript. The vast majority of extensions which people install are completely unnecessary and serve only to pose a security risk.
sr. member
Activity: 868
Merit: 333

Thanks. I checked and they seem to be legit.

And I've also logged into my account and confirmed the Copy button is not compromised (i.e. copied address is the same when pasted).

There's a chance your system has been compromised. Run a malware/ spyware scan on your system using some tools like Malwarebytes and check if anything shows up.
Right, follow this instruction from @UserU, your system was compromised and the only solution is to remove it. If you still failed to found the malware and the problem still occur, try to reformat your personal computer and start to avoid installing unnecessary applications including chrome extensions.
legendary
Activity: 2492
Merit: 1232
I've made a habit of double checking the addresses since I read about this switching malware for the first time. You don't even have to be thorough with it, just check 3 first and 3 last positions in both addresses. The malware often tries to pick a substitute that starts the same as the copied adres, so checking the first part only could not work, but the beginning and the end has always worked for me.
Tent to agree with this, no need to hurry every time you have made transaction in crypto. Checking the first 3 and last digits of the Bitcoin address is a way you can avoid form malware hack.

As OP question, Binance support was right. You might have a malware infection in your PC that you need to format, there's nothing that Binance can do. You can't get back your lost Bitcoin, no offense but the fact this is your fault. Due to carelessness hackers successfully stole your Bitcoin. I hope you will learn from this mistake and will not happen again.
legendary
Activity: 2814
Merit: 1192
I've made a habit of double checking the addresses since I read about this switching malware for the first time. You don't even have to be thorough with it, just check 3 first and 3 last positions in both addresses. The malware often tries to pick a substitute that starts the same as the copied adres, so checking the first part only could not work, but the beginning and the end has always worked for me.
Another good habit is testing out the address before you send big money to it and 0.1BTC is not a small amount. In most countries this is more than the average monthly salary, so I'd first send 0.01 and then the rest of it if the first one gets through fine. Paying the fee twice is a small price for safety.
hero member
Activity: 2128
Merit: 532
FREE passive income eBook @ tinyurl.com/PIA10

Thanks. I checked and they seem to be legit.

And I've also logged into my account and confirmed the Copy button is not compromised (i.e. copied address is the same when pasted).

There's a chance your system has been compromised. Run a malware/ spyware scan on your system using some tools like Malwarebytes and check if anything shows up.
newbie
Activity: 16
Merit: 0
From my diagnosis, the 0.1 bitcoin actually exists in 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. I'm sorry for your loss. However, I am not sorry. When copying and pasting a wallet address, you're meant to look closely at what you're doing. When I copy a wallet address (for my little $20 transaction), one of my modes to check if it's OK is checking the first and the last characters of they correspond to that of the source. It could have been better if just a character was tempered with but here, you copied a whole different wallet address and send a whooping 0.1bitcoin without caring if it's destination was right.


Mhmmm, i agree with you, but, since i'm not expert, n have created my wallet in April/2020 "around 10 days or less", im a newbie and don't know those things.
Don't you think this issue is a really bad one?

What about the new investments? Newcomers?

I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?

In that case, the button should'nt exist then, right?

Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?

The scammers will always find a way, so rather than making their ways more sophisticated by blocking some stuff, it's important to raise awareness of how different existing scam techniques work. I've heard about the 'Copy' scam, one which seems to be even more elaborate than the one to which you were a victim because the copied scammer's address even had, like, the first 3 symbols the same with the original address. That's why I always double-check the addresses when making transactions. And from what I've read, the malware attacks the clipboard, so I don't see how using the keyboard would make a difference. Maybe it did in your case, but it's not universally so. Keep in mind that another dangerous scam is with QR-code generators which substitute the original address thus also getting people to send money to a wrong place.


Damnit, those scammers are everywhere Sad Sad Sad Sad
newbie
Activity: 16
Merit: 0
Erm... have you watched the video?
There's nothing wrong with my computer nor action "Ctrl + C / Ctrl + V", it's only happening on  Binance's "Copy Address" button.
And it happen's only for the 1st click, because if i click 2 times more, it copy my real wallet address normally

The malware might not always change your address to prevent being easily detected like this. It's really difficult to tell how the malware works when the malware itself is hiding perfectly on your system. If you want to argue with Binance over this then you're going to have a tough battle.

Binance and probably most people would not accept your "if there is no copy button then this won't happen" argument because they'll reply with "you should not get a virus in the first place and you should always double-check". What matters right now is securing your new system.

You're right on everything you said, unfortunatelly  Embarrassed
newbie
Activity: 16
Merit: 0
None of them are crypto-related unfortunatelly Sad

Could you show us the list of extensions installed? That helps us to more or less identify if the malware came from the browser or the system.

Sure, here they are;

https://ibb.co/jwcY2YK

https://ibb.co/W58vn34
legendary
Activity: 2170
Merit: 1789
Erm... have you watched the video?
There's nothing wrong with my computer nor action "Ctrl + C / Ctrl + V", it's only happening on  Binance's "Copy Address" button.
And it happen's only for the 1st click, because if i click 2 times more, it copy my real wallet address normally

The malware might not always change your address to prevent being easily detected like this. It's really difficult to tell how the malware works when the malware itself is hiding perfectly on your system. If you want to argue with Binance over this then you're going to have a tough battle.

Binance and probably most people would not accept your "if there is no copy button then this won't happen" argument because they'll reply with "you should not get a virus in the first place and you should always double-check". What matters right now is securing your new system.
legendary
Activity: 3248
Merit: 1402
Join the world-leading crypto sportsbook NOW!
From my diagnosis, the 0.1 bitcoin actually exists in 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. I'm sorry for your loss. However, I am not sorry. When copying and pasting a wallet address, you're meant to look closely at what you're doing. When I copy a wallet address (for my little $20 transaction), one of my modes to check if it's OK is checking the first and the last characters of they correspond to that of the source. It could have been better if just a character was tempered with but here, you copied a whole different wallet address and send a whooping 0.1bitcoin without caring if it's destination was right.


Mhmmm, i agree with you, but, since i'm not expert, n have created my wallet in April/2020 "around 10 days or less", im a newbie and don't know those things.
Don't you think this issue is a really bad one?

What about the new investments? Newcomers?

I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?

In that case, the button should'nt exist then, right?

Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?

The scammers will always find a way, so rather than making their ways more sophisticated by blocking some stuff, it's important to raise awareness of how different existing scam techniques work. I've heard about the 'Copy' scam, one which seems to be even more elaborate than the one to which you were a victim because the copied scammer's address even had, like, the first 3 symbols the same with the original address. That's why I always double-check the addresses when making transactions. And from what I've read, the malware attacks the clipboard, so I don't see how using the keyboard would make a difference. Maybe it did in your case, but it's not universally so. Keep in mind that another dangerous scam is with QR-code generators which substitute the original address thus also getting people to send money to a wrong place.
sr. member
Activity: 1918
Merit: 370
Ive seen some issues like this. Copying wrong btc address. Binance isn't responsible about that .1 you have sent to the wrong address. You have a malware inside your phone or pc. Maybe you have downloaded some malicious app or click some malicious sites containing this malware which you will copy pasted wrong btc address. Unfortunatelty, if the transaction was successful, you can't get back that .1 btc.
I agree, If the said problem is caused by a malware attack secretly installed then Binance is out of your problem otherwise if this happen to be a system breach from the greatest exchange in current time then it would be a blast but I don't think it was their mistake since it is just you that I have seen this kind of problem. Most probably it was due to malware attack that you caught from your browsing style, you might clicked something that isn't good for your computer.

Haven't you triple check your btc address before sending it out? This maybe a lesson learned not just for you but to everyone here.
Old and gold reminder, always double check the recipient of  your funds, it may takes time but at least it will be safe.
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
Deep scan feature of Malwarebytes does not reveal these type of malware inside your system, unfortunately. I have had intentionally infected my old laptop with such and it turns out, it pretty much blends in within your aystem apps causing Defender and Malwarebytes to pass it as a false-negative.

Everything really depends on how well malware is made, and if the security software cannot detect it, or it can detect it but it cannot remove it, then we can try to scan in safe mode. In this way, we can prevent malware from running at all from the OS, so security software will have a better chance for detecting and removing threats.

Some viruses/malware are too complicated to remove, and the only solution is to format the disk. Crypto users should pay more attention to prevention than others, which means better security software, use of Linux OS, and hardware wallets that force us to confirm a coin address before approving a transaction.
sr. member
Activity: 1330
Merit: 326
Ive seen some issues like this. Copying wrong btc address. Binance isn't responsible about that .1 you have sent to the wrong address. You have a malware inside your phone or pc. Maybe you have downloaded some malicious app or click some malicious sites containing this malware which you will copy pasted wrong btc address. Unfortunatelty, if the transaction was successful, you can't get back that .1 btc.

Haven't you triple check your btc address before sending it out? This maybe a lesson learned not just for you but to everyone here.
hero member
Activity: 2268
Merit: 579
Vave.com - Crypto Casino
Mhmmm, i agree with you, but, since i'm not expert, n have created my wallet in April/2020 "around 10 days or less", im a newbie and don't know those things.
Don't you think this issue is a really bad one?

What about the new investments? Newcomers?

I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?

In that case, the button should'nt exist then, right?

Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?


Your "my ctrl + c / ctrl + v" is okay I guess, but the malware immediately changes the wallet address, so you don't realize it. That happened too with some of my friends, but then they formatted their laptops and installed a new system. After that, they try to copy-paste the wallet address, and they are fine, and the malware is not there. You should format your computer, and instal a new system if you don't want to get the other bad experience.

This lesson is worth for you, at least, you know that there is a malware which can infect your copy-paste command, and you should be careful. Make sure you double check or triple check on the wallet destination and make sure it is right before you click the send button.
You are right about him formatting his computer that wint be enough to save him next time if some situations happen again and i will advise the OP to always use an updated paid antivirus, cross checking very wallet address before sending payment and never open, visit untrusted site or install app from unknown source in the extension platform.
sr. member
Activity: 1022
Merit: 257
1. Install anti-virus software to scan/kill Trojan and other viruses as soon as possible;
2. Disable plug-in/extensions for your browser, trading bot or third-party APP and uninstall unknown software on your computer;
3. Change the password for your devices and accounts;
4. In a critically dangerous situation you should format your hard drive and reinstall the OS (operating system) on your computer (If you are not sure how to do this, seek professional assistance);
5. Consider seeking help from an information security expert to determine how to achieve the best possible level of security;
As you have said, you already formatted your computer and you are done scanning for malware and detected nothing, right?
But have you followed their instructions regarding your extensions? It seems that it is the problem that you are looking for. It is safe to assume that you should remove those extensions to be safe.
legendary
Activity: 2576
Merit: 1252
Leading Crypto Sports Betting & Casino Platform
There are no transactions in the block chain sending 0.10 BTC to 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. Why is that?
I'd see it already, and until now the balance hasn't move or touched. I'm confuse on what is really going on.

That is why, you always need to double check your address before you confirm the transaction, no matter how strong or genuine your OS or security it, it is still breachable because in the world of IT, there's no system that is safe. Meaning, you should be personally responsible and be observant. But you can reduce the risk of it happening again, install a genuine anti virus and prevent yourself from downloading from sites that aren't trusted. Make sure that you don't have any plugins even in your browser that causes this issue.
Malware these days are good enough that even the experts and experienced ones can hardly distinguish it from their devices that's why the account of every action we take over should be us coz no one's really accountable for that, not even the exchange. So if it's true that you have been attacked by one of these malware or some kind of virus, might as well be observant the next time and this should serve a lesson for you.

I'm confuse, really really confuse right now coz if I were going to send a huge amount in btc I would definitely check the address I'm sending into however he did not do it. Watching the video made me more confuse coz  there is no mic for you to speak so we will just be basing on your pointer gesture. You did able to copy the amount and pasted it in the address bar and it pasted correctly, not the case for the time you copied the address of yours but you did not let us see that you pasted it using your mouse pointer, you did was a keyboard shortcut. I'm not telling you that you just made it in hope to get a refund from Binance.

CTRL+V is not the same as CTRL+Z. I tried it after watching the video and it works. I can make the fake address out of my screen after hitting CTRL+Z and not CTRL+V.
So now can you get this done with mouse only? of course you can't coz you said you already formatted your computer and the malware was out, right?

THE SHOW IS OVER MAN.


I will record it again, with all those infos / ctrl + z / ctrl + v / ctrl + c
Unfortunately I don't believe you yet since I wasn't able to see you do it but I would be glad if you enlighten me. In addition to that, I think the antivirus installed to your device is enough to collect data threats like what you to from a random click over the internet. Windows defender can manage to determine malware attacks on the computer base on the tests that Microsoft did from 2018 up to 2020, So I guess any malware cannot get into that. And I wonder why did the creator of the "malware" isn't touching the bitcoin that you sent mistakenly?

I would be glad if you upload a video considering my desires to seek the truth. tia.
legendary
Activity: 3542
Merit: 1352
Cashback 15%
Deep scan feature of Malwarebytes does not reveal these type of malware inside your system, unfortunately. I have had intentionally infected my old laptop with such and it turns out, it pretty much blends in within your aystem apps causing Defender and Malwarebytes to pass it as a false-negative.

Binance is right on this one, unfortunately, and the best you can do is to secure your system and try not to download unnecessary things on it so as not to put your files and your coins at risk.
member
Activity: 1358
Merit: 81
I am sorry that you have lost your bitcoin but you have done well to share your experience because this alerts us to clipboard malware. Every time I make a transaction I am very cautious, I prefer to waste a minute checking the address than to lose everything. Sometimes I type each of the characters in the address and don't use copy and paste.
It works well for me in MetaMask but before sending the transaction I check two to three times.
legendary
Activity: 3472
Merit: 10611
malwarebyte or any other virus/malware scanner may not be able to find the problem if the hijacker is one of the browser extensions that you have installed on your browser. as i said before they can also have the same behavior of changing any bitcoin address that you copy.
sr. member
Activity: 1260
Merit: 315
www.Artemis.co
I noticed your browser has a number of extensions. Have you, by any chances recently downloaded any crypto-related or some shady ones?

These kind of things usually hijack your copy and paste contents.

None of them are crypto-related unfortunatelly Sad
Even so, the issue you have encountered is not because your extensions are whether crypto or non-crypto related.

What you have encountered is your personal device or computer has malware that you should have removed and you should start avoiding adding more extensions especially those unnecessary ones.
hero member
Activity: 2128
Merit: 532
FREE passive income eBook @ tinyurl.com/PIA10
None of them are crypto-related unfortunatelly Sad

Could you show us the list of extensions installed? That helps us to more or less identify if the malware came from the browser or the system.
sr. member
Activity: 763
Merit: 252
if your os is came from crack iso maybe binance is correct just format your pc as binance said. its hurt to loss that huge amount and i think binance can't recover your loss all can they do is to advice to report in cybercrime. just make sure next time double check the addresses before hit the confirm button dont get to excited. i felt this situation when i send in the wrong address too just accept charge to experience and move on..
legendary
Activity: 2576
Merit: 1248
I will record it again, with all those infos / ctrl + z / ctrl + v / ctrl + c
So the error is still occurring ?
legendary
Activity: 2156
Merit: 2100
Marketing Campaign Manager |Telegram ID- @LT_Mouse
Binance is one of the highly reputed exchanges and I would rank them number 1. They have a lot of other businesses too and they are very serious here. It is not a good idea to expect Binance is doing shit or trying to scam 0.10 BTC.
You havee been attacked by copy paste malware, It can change your copy address to another.
legendary
Activity: 2268
Merit: 18711
I noticed your browser has a number of extensions. Have you, by any chances recently downloaded any crypto-related or some shady ones?

These kind of things usually hijack your copy and paste contents.

None of them are crypto-related unfortunatelly Sad
They don't need to be crypto related. Any extension can include any code in it, so unless you have personally read all the code of what you extensions you are installing, you have no idea what they actually do, only what they claim to do. They could redirect you to phishing sites, steal your usernames and passwords, alter your clipboard, any number of things. We've seen people lost their bitcoin because of malicious code in everything from price tickers to ad blockers. There was even a case of clipboard malware being hidden in software which gave you custom backgrounds. Nothing to do with crypto, and seemingly innocuous, resulting in people losing all their money.

Your crypto activities should remain separately from your general online activities to help prevent things like this happening. The browser you use for crypto should be used for nothing else, and have minimal extensions on it - uBlock Origin, HTTPS Everywhere, Privacy Badger, and maybe NoScript if you can, is probably all you need. If you can use an entirely separate device for your crypto activities, even better. If you can't, then you should think about using a hardware wallet to protect against clipboard malware.
legendary
Activity: 2758
Merit: 6830
Ohhhh damn man, it already happened with you  Undecided Undecided Undecided tbh i thought that i was the only one
That's a really common malware. And trust me, this isn't an issue with Binance's "copy address button". If this was the case, we would see thousands and even millions worth of BTC being reported stolen, which is not the case. Binance is one of the biggest exchanges in the world and they move millions daily.

Like others said, you either have an infected PC (downloaded a "bad" software) or an infected browser (with enough permissions, extensions or scripts - usually used with Tampermonkey or such - can do basically anything in the websites you visit. E.g: change the button JS to copy an predetermined address generated by a hacker). Clean your device, be more careful and move on.
newbie
Activity: 16
Merit: 0
Try and scan your computer with malwarebyte. This thing has happened to me before in the past. I tried to purchase airtime using btc on bitrefill and I discovered that the address generated is different when I pasted it. Luckily for me, I have this attitude of double checking an address anytime I'm making transaction before completing it. Sorry for your lost



Ohhhh damn man, it already happened with you  Undecided Undecided Undecided tbh i thought that i was the only one
hero member
Activity: 1220
Merit: 612
OGRaccoon
Actually the op makes a good point most of the copy paste malware would effect the CTRL+C + CTRL+V key combinations the fact that pressing the button inside the binance platform would change the address but not when he is  doing the key commands above himself is rather strange.

I wonder if this is a new type of malware that is targeting the browser function for Binance copy address.

OP I would scan your machine at boot time this type of scan will take a fair amount of time but it may bring back something.  

Other than that did you download anything recently and install it?  any browser application or software?

This would be the first time I have seen the copy paste bitcoin stealing malware not effect the key commands but actually target the press of the button from Binance.

I'm afraid OP it looks like you have lost your funds.

full member
Activity: 1498
Merit: 129
Try and scan your computer with malwarebyte. This thing has happened to me before in the past. I tried to purchase airtime using btc on bitrefill and I discovered that the address generated is different when I pasted it. Luckily for me, I have this attitude of double checking an address anytime I'm making transaction before completing it. Sorry for your lost
legendary
Activity: 2030
Merit: 1189
Common paste swap virus attack.

This is why it's important to use a secure operating system, ideally something that will only run signed applications, e.g. MacOS.

There is no point warning other people about your loss since these attacks have been going on for decades now and people still get duped by it.

You should ALWAYS double check the device, or ideally do a penny test if you're still not sure, since its also possible for these tools to modify the display too.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
I noticed your browser has a number of extensions. Have you, by any chances recently downloaded any crypto-related or some shady ones?

These kind of things usually hijack your copy and paste contents.

None of them are crypto-related unfortunatelly Sad
Whether crypto-related or not the thing is one of your installed browser extensions or one of your installed applications has malware with clipboard hijacker and you should get rid of that. Good thing that you already reformat your device, the sad thing is those funds cannot be recovered.

This should serve as a lesson to you and to anyone here that double or triple check the receiving address before you click the send button because there's no turning back once done. It will only take several seconds to check the address, and that could save lives if those seconds of time were used.
newbie
Activity: 16
Merit: 0
There are no transactions in the block chain sending 0.10 BTC to 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. Why is that?
I'd see it already, and until now the balance hasn't move or touched. I'm confuse on what is really going on.

That is why, you always need to double check your address before you confirm the transaction, no matter how strong or genuine your OS or security it, it is still breachable because in the world of IT, there's no system that is safe. Meaning, you should be personally responsible and be observant. But you can reduce the risk of it happening again, install a genuine anti virus and prevent yourself from downloading from sites that aren't trusted. Make sure that you don't have any plugins even in your browser that causes this issue.
Malware these days are good enough that even the experts and experienced ones can hardly distinguish it from their devices that's why the account of every action we take over should be us coz no one's really accountable for that, not even the exchange. So if it's true that you have been attacked by one of these malware or some kind of virus, might as well be observant the next time and this should serve a lesson for you.

I'm confuse, really really confuse right now coz if I were going to send a huge amount in btc I would definitely check the address I'm sending into however he did not do it. Watching the video made me more confuse coz  there is no mic for you to speak so we will just be basing on your pointer gesture. You did able to copy the amount and pasted it in the address bar and it pasted correctly, not the case for the time you copied the address of yours but you did not let us see that you pasted it using your mouse pointer, you did was a keyboard shortcut. I'm not telling you that you just made it in hope to get a refund from Binance.

CTRL+V is not the same as CTRL+Z. I tried it after watching the video and it works. I can make the fake address out of my screen after hitting CTRL+Z and not CTRL+V.
So now can you get this done with mouse only? of course you can't coz you said you already formatted your computer and the malware was out, right?

THE SHOW IS OVER MAN.


I will record it again, with all those infos / ctrl + z / ctrl + v / ctrl + c
legendary
Activity: 2576
Merit: 1252
Leading Crypto Sports Betting & Casino Platform
There are no transactions in the block chain sending 0.10 BTC to 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. Why is that?
I'd see it already, and until now the balance hasn't move or touched. I'm confuse on what is really going on.

That is why, you always need to double check your address before you confirm the transaction, no matter how strong or genuine your OS or security it, it is still breachable because in the world of IT, there's no system that is safe. Meaning, you should be personally responsible and be observant. But you can reduce the risk of it happening again, install a genuine anti virus and prevent yourself from downloading from sites that aren't trusted. Make sure that you don't have any plugins even in your browser that causes this issue.
Malware these days are good enough that even the experts and experienced ones can hardly distinguish it from their devices that's why the account of every action we take over should be us coz no one's really accountable for that, not even the exchange. So if it's true that you have been attacked by one of these malware or some kind of virus, might as well be observant the next time and this should serve a lesson for you.

I'm confuse, really really confuse right now coz if I were going to send a huge amount in btc I would definitely check the address I'm sending into however he did not do it. Watching the video made me more confuse coz  there is no mic for you to speak so we will just be basing on your pointer gesture. You did able to copy the amount and pasted it in the address bar and it pasted correctly, not the case for the time you copied the address of yours but you did not let us see that you pasted it using your mouse pointer, you did was a keyboard shortcut. I'm not telling you that you just made it in hope to get a refund from Binance.

CTRL+V is not the same as CTRL+Z. I tried it after watching the video and it works. I can make the fake address out of my screen after hitting CTRL+Z and not CTRL+V.
So now can you get this done with mouse only? of course you can't coz you said you already formatted your computer and the malware was out, right?

THE SHOW IS OVER MAN.
member
Activity: 686
Merit: 35
Your first mistake was not going back to check the address you copied and from the original source you copied from, it is very important when you copy an address you try and recheck the first and last letters/numbers of the wallet, and again somebody mentioned email confirmation, Binance always send email confirmation before any transaction is approved, these are things should look out for against next time, but for this particular transaction I don't think you will get it back, very sad tho.
legendary
Activity: 2576
Merit: 1248
  So do the error is occurring again, even after reformatting your computer?
  In this case it can be a "middle man attack", Someone targeting your computer following your connection



  I'm sorry to tell you that the only way to recover your bitcoins would probably to found the owner of the address, and then pirate him in return to get your funds back
newbie
Activity: 16
Merit: 0
I noticed your browser has a number of extensions. Have you, by any chances recently downloaded any crypto-related or some shady ones?

These kind of things usually hijack your copy and paste contents.

None of them are crypto-related unfortunatelly Sad
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
LittleBigIvan, that clipboard malware is very likely linked to your browser, some add-on or extension detects that you are in Binance and that you are copying the deposit address. I don't know what antivirus software you are using, but most should successfully block such things, so your AV is not protecting you as it should, or you ignore warning and allow that malicious application access to your system.

What you can do right now is scan your computer with the free version of Malwarebytes, and also with that AV you have (check virus definitions/updates before scan). Also good&free program from MB - Adwcleaner.

All this will not help you get back what you lost, but you can try to find out exactly what happened.
sr. member
Activity: 1932
Merit: 300
Vave.com - Crypto Casino
And these malware don't just change any text to address, they recognize the coin address and replace with respective address while they leave other text unchanged. If you mistakenly sent them, there's no way you'll get those coin back. So, it's a costly way to learn to carefully confirm the address.
sr. member
Activity: 1036
Merit: 329
I noticed your browser has a number of extensions. Have you, by any chances recently downloaded any crypto-related or some shady ones?

These kind of things usually hijack your copy and paste contents.

Its really possible  that this is what happen to him.

That answered in binance is normal thing they are not the one who's responsible for the lost amount . You should always double check  the address before sending money.

You can easily notice the difference between that address if you give at least second's to check it.

19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC
13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di

hero member
Activity: 2338
Merit: 953
Temporary forum vacation
So sorry to hear about this OP and I know it is too late to do anything right now but I hope you know now every time you do Bitcoin transactions to double and even triple check manually,,, I always use copy paste but I see the first 5 characters to make sure it is the same before I confirm and I do it many times cause I am so paranoid!
legendary
Activity: 3668
Merit: 6382
Looking for campaign manager? Contact icopress!
That is why, you always need to double check your address before you confirm the transaction, no matter how strong or genuine your OS or security it, it is still breachable because in the world of IT

And if one transfers to 3rd party services he can also make a habit from saving a print screen with the address they show in their page to be somewhat able prove them guilty if that's the case (but 99.9% chance it's not the case).
sr. member
Activity: 644
Merit: 364
In Code We Trust
That is why, you always need to double check your address before you confirm the transaction, no matter how strong or genuine your OS or security it, it is still breachable because in the world of IT, there's no system that is safe. Meaning, you should be personally responsible and be observant. But you can reduce the risk of it happening again, install a genuine anti virus and prevent yourself from downloading from sites that aren't trusted. Make sure that you don't have any plugins even in your browser that causes this issue.
hero member
Activity: 2128
Merit: 532
FREE passive income eBook @ tinyurl.com/PIA10
I noticed your browser has a number of extensions. Have you, by any chances recently downloaded any crypto-related or some shady ones?

These kind of things usually hijack your copy and paste contents.
newbie
Activity: 16
Merit: 0
I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?
both the button and pressing ctrl+c do the same exact thing, they set the clipboard content to a string that is the address on the site. what malwares (known as clipboard hijacker) do is that they monitor clipboard and whenever the content is a bitcoin address they change it to the thief's address.

Quote
Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?
what do you mean by this? did you copy some random string or an actual address?
if you press ctrl+c on any address (such as the one you posted: 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC) and then pasting it pastes the 13PcbKj... address then you have the malware but if that doesn't happen it could be a bug in Binance system.

also check if you have any browser extensions that might interfere. they could also do weird things like this.

Erm... have you watched the video?
There's nothing wrong with my computer nor action "Ctrl + C / Ctrl + V", it's only happening on  Binance's "Copy Address" button.
And it happen's only for the 1st click, because if i click 2 times more, it copy my real wallet address normally
full member
Activity: 266
Merit: 106
Hey there guys, im creating this topic just to share and "maybe discuss" my case with Binance's support;

At the moment i didnt knew what exactly happened, but, i've copied the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di
from the "Copy Address button" and deposited 0.10 BTC "That's a high value for me"

At that point, everything is ok.
Been waiting 10~20 minutes, and my balance haven't updated.
Ok, something wrong is happening here
For instinct, i've just checked my wallet again, and, for my hopelessness, my real BTC wallet is 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC

The "Copy Adress is automatically copying the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di"

PS: I've also recorded with OBStudio what just happened; https://youtu.be/EqUqI6eaU6I

Ok, that's a problem. since i have already deposited 0.10 BTC in ANOTHER wallet.
No other way to solve it, i had to open a ticket.
And that's the answer i've received;


Binance's answer ;
Dear Ivan,

Thanks for reaching out.

We are sorry for what you encountered. Please go through following tips immediately before you take any further action.

1. Install anti-virus software to scan/kill Trojan and other viruses as soon as possible;
2. Disable plug-in/extensions for your browser, trading bot or third-party APP and uninstall unknown software on your computer;
3. Change the password for your devices and accounts;
4. In a critically dangerous situation you should format your hard drive and reinstall the OS (operating system) on your computer (If you are not sure how to do this, seek professional assistance);
5. Consider seeking help from an information security expert to determine how to achieve the best possible level of security;

Thank you for your understanding.

Best Regards,
Binance Support Team


My reply ;

Right.

But, what about my 0.10 BTC's?
How can i get it back?


Binance's reply ;

Dear Ivan,

Thank you for your follow-up.

As shown in the website, your BTC deposit address should be 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC. If the address changes after you copy and paste it, you will need to check the security status of your device. You can refer to the instructions offered by Elaine before.

In addition, I regret to tell you that, given that the destination address does not belong to Binance, we are not able to freeze any funds/accounts tied to the recipients.

If you are interested in pursuing this case, we recommend that you file a police report or cyber-crime report so that you may receive assistance as soon as possible.

Your understanding is much appreciated.

Kind regards,
Binance Support Team



The point is;
I have already formated my computer, downloaded the official .ISO from microsoft, paid for the OS, the anti viruses is ok, nothing have been detected.
Do you think the Binance's support is right in that case?

I agree that i should have paid more attention, yes, but, the "error" is occurring only on the "Copy Address button", not in my Ctrl + C / Ctrl + V


That's it guys, thank you for reading.







Oh men, I think that's a malware or trojan like binance told you, maybe you clicked links in websites you've visted, many users encountered that particular problem the copy address schemes, I also encountered that problem once in e-toro, but its my fault i didn't check my recieving address so as result I just threw my money to someones wallet, keep safe everyone
legendary
Activity: 3472
Merit: 10611
I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?
both the button and pressing ctrl+c do the same exact thing, they set the clipboard content to a string that is the address on the site. what malwares (known as clipboard hijacker) do is that they monitor clipboard and whenever the content is a bitcoin address they change it to the thief's address.

Quote
Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?
what do you mean by this? did you copy some random string or an actual address?
if you press ctrl+c on any address (such as the one you posted: 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC) and then pasting it pastes the 13PcbKj... address then you have the malware but if that doesn't happen it could be a bug in Binance system.

also check if you have any browser extensions that might interfere. they could also do weird things like this.
newbie
Activity: 16
Merit: 0
I don't think that there is other way to recover your money. Once your money has already transfered with other btc wallet, you cannot get it back again because the money has already transfered, just accept the fact that your 1.0 BTC cannot get back, the only thing you may do is to call for professional assistance so they can help you with your problem.

I think your computer has virus created by hackers or scammers because as what you have said, once you copy your BTC address, different wallet address has been copied and I can't judge you with that because just like me once I alredy copied my btc address, I will paste it to the filling form and don't even check it again. Maybe that virus comes by unsecured websites or advertisement because those are the common ways to get virus on your computer.

The good thing is that you already formatted your computer, I hope that it won't happen again. Maybe this would be a lesson for you.


Yes, that have been really hard lesson for me.
hero member
Activity: 2912
Merit: 556
Enterapp Pre-Sale Live - bit.ly/3UrMCWI
Mhmmm, i agree with you, but, since i'm not expert, n have created my wallet in April/2020 "around 10 days or less", im a newbie and don't know those things.
Don't you think this issue is a really bad one?

What about the new investments? Newcomers?

I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?

In that case, the button should'nt exist then, right?

Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?


Your "my ctrl + c / ctrl + v" is okay I guess, but the malware immediately changes the wallet address, so you don't realize it. That happened too with some of my friends, but then they formatted their laptops and installed a new system. After that, they try to copy-paste the wallet address, and they are fine, and the malware is not there. You should format your computer, and instal a new system if you don't want to get the other bad experience.

This lesson is worth for you, at least, you know that there is a malware which can infect your copy-paste command, and you should be careful. Make sure you double check or triple check on the wallet destination and make sure it is right before you click the send button.
full member
Activity: 742
Merit: 160
I don't think that there is other way to recover your money. Once your money has already transfered with other btc wallet, you cannot get it back again because the money has already transfered, just accept the fact that your 1.0 BTC cannot get back, the only thing you may do is to call for professional assistance so they can help you with your problem.

I think your computer has virus created by hackers or scammers because as what you have said, once you copy your BTC address, different wallet address has been copied and I can't judge you with that because just like me once I alredy copied my btc address, I will paste it to the filling form and don't even check it again. Maybe that virus comes by unsecured websites or advertisement because those are the common ways to get virus on your computer.

The good thing is that you already formatted your computer, I hope that it won't happen again. Maybe this would be a lesson for you.
newbie
Activity: 16
Merit: 0
From my diagnosis, the 0.1 bitcoin actually exists in 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. I'm sorry for your loss. However, I am not sorry. When copying and pasting a wallet address, you're meant to look closely at what you're doing. When I copy a wallet address (for my little $20 transaction), one of my modes to check if it's OK is checking the first and the last characters of they correspond to that of the source. It could have been better if just a character was tempered with but here, you copied a whole different wallet address and send a whooping 0.1bitcoin without caring if it's destination was right.


Mhmmm, i agree with you, but, since i'm not expert, n have created my wallet in April/2020 "around 10 days or less", im a newbie and don't know those things.
Don't you think this issue is a really bad one?

What about the new investments? Newcomers?

I agree there's a lot of malwares / scamwares / viruses, but, if the virus exist, and it only affect a button, its a simple button, what about protect that button? or maybe making a different kind button?

In that case, the button should'nt exist then, right?

Well, my ctrl + c / ctrl + v is working good. if there's was no "Copy Address" this problem wouldn't happen, agree?


member
Activity: 569
Merit: 88
Credibility: 999
From my diagnosis, the 0.1 bitcoin actually exists in 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. I'm sorry for your loss. However, I am not sorry. When copying and pasting a wallet address, you're meant to look closely at what you're doing. When I copy a wallet address (for my little $20 transaction), one of my modes to check if it's OK is checking the first and the last characters of they correspond to that of the source. It could have been better if just a character was tempered with but here, you copied a whole different wallet address and send a whooping 0.1bitcoin without caring if it's destination was right.
legendary
Activity: 3094
Merit: 1069
DGbet.fun - Crypto Sportsbook
That's why you always need to double check your address while making a transaction. The reason for email confirmation is also to prevent users from sending coins to unwanted address. Clipboard malware are a old and popular way people are scammed. Be sure you know all of the software and browser addons you have installed. Don't allow any access to websites unless you are completely sure. Keep your browser as addon/extension free as possible.
newbie
Activity: 16
Merit: 0
There are no transactions in the block chain sending 0.10 BTC to 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di. Why is that?


Oh yes,

The first transaction is 0.8 BTC, and the other one is 0.2 BTC, both from 3HiNx4fouYf8w153bserjrfrkw1J8VgFPb
legendary
Activity: 2576
Merit: 1248

There is been existing malwares like the one called "Bitcoin Stealer" that target and monitor the clipboard to replace bitcoin addresses copied with the hackers addresses,  So this one reconize and replace the address even if it's copied after simple text selection
 The thing you encounter is suggesting that the failure is present on the code of the page, or on the browser

 Ill suggest you if you still encountering the issue to save a copy of the web page, that's trying keep proofs for what is happening
legendary
Activity: 2268
Merit: 18711
There are two deposits of 0.08 and 0.02 made a few minutes apart which could belong to the OP. The change address for the first transaction is used as an input in the second transaction, so they certainly came from the same person.

As to OP: You have clipboard malware. Binance are correct in saying you should format your computer, and there is nothing they can do to recover your funds.
newbie
Activity: 16
Merit: 0
Hey there guys, im creating this topic just to share and "maybe discuss" my case with Binance's support;

At the moment i didnt knew what exactly happened, but, i've copied the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di
from the "Copy Address button" and deposited 0.10 BTC "That's a high value for me"

At that point, everything is ok.
Been waiting 10~20 minutes, and my balance haven't updated.
Ok, something wrong is happening here
For instinct, i've just checked my wallet again, and, for my hopelessness, my real BTC wallet is 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC

The "Copy Adress is automatically copying the adress 13PcbKjLBjVUYcSevYELQDc1pLDm6Bb9Di"

PS: I've also recorded with OBStudio what just happened; https://youtu.be/EqUqI6eaU6I

Ok, that's a problem. since i have already deposited 0.10 BTC in ANOTHER wallet.
No other way to solve it, i had to open a ticket.
And that's the answer i've received;


Binance's answer ;
Dear Ivan,

Thanks for reaching out.

We are sorry for what you encountered. Please go through following tips immediately before you take any further action.

1. Install anti-virus software to scan/kill Trojan and other viruses as soon as possible;
2. Disable plug-in/extensions for your browser, trading bot or third-party APP and uninstall unknown software on your computer;
3. Change the password for your devices and accounts;
4. In a critically dangerous situation you should format your hard drive and reinstall the OS (operating system) on your computer (If you are not sure how to do this, seek professional assistance);
5. Consider seeking help from an information security expert to determine how to achieve the best possible level of security;

Thank you for your understanding.

Best Regards,
Binance Support Team


My reply ;

Right.

But, what about my 0.10 BTC's?
How can i get it back?


Binance's reply ;

Dear Ivan,

Thank you for your follow-up.

As shown in the website, your BTC deposit address should be 19rRmQXDKxu8bQki2tJqdPJ2H1SfoYunHC. If the address changes after you copy and paste it, you will need to check the security status of your device. You can refer to the instructions offered by Elaine before.

In addition, I regret to tell you that, given that the destination address does not belong to Binance, we are not able to freeze any funds/accounts tied to the recipients.

If you are interested in pursuing this case, we recommend that you file a police report or cyber-crime report so that you may receive assistance as soon as possible.

Your understanding is much appreciated.

Kind regards,
Binance Support Team



The point is;
I have already formated my computer, downloaded the official .ISO from microsoft, paid for the OS, the anti viruses is ok, nothing have been detected.
Do you think the Binance's support is right in that case?

I agree that i should have paid more attention, yes, but, the "error" is occurring only on the "Copy Address button", not in my Ctrl + C / Ctrl + V


That's it guys, thank you for reading.






Jump to: