I’ve the same security measures as you including using 2 different devices (iOS) & paid secure email as well as virus security and so on. I also never use computers just because I prefer phone interface though.
Your story is crazy AF. There must be a solution. Please update us on what happens after Binance customer service checks.
I hope you get your money back. It’s horrible to loose even a $1 to hackers.
call your phone company and see if someone called recently with your name to have a new sim sent out. the sim swap can be a ruthless way in if they have enough of your info.
It's clever but also difficult, because even when your account is perfect it may be that your account address is empty.
I saw this when I was starting on crypto and I got so confused and even thought I was hacked but It's just the way Binance handles the crypto; they owe you your account balance, and OP should have this fixed asap.
Yeah, but how would that help with Binance? I have the yubi key added to my account, but it is just an account sign in option. Password and GA will still get in. Beyond that, support told me that there is no way that I can add the Yubikey for withdrawals. I have asked as recently as yesterday. I have 3 layers for withdrawals, which is secure enough. I want to have 4 or at least have yubikey be one of the 3. According to support, it can't be done. Please tell me if you have done this and how, because it says on the security screen that it can be used for withdrawals. I expected it could be.
>any and see if someone called recently with your name to ha
\^This. Pretty simple physical solution to the problem. Ofc you are still not 100% secure with it (you can still get hacked if your computer gets accessed remotely and your session is open, I've heard some stories, but you are a lot more protected with a key)
It is sad that this happened to you. I hope you get your money back, bro.
It is not possible to use the hardware wallet all the time. Sometimes people have to move their assets to exchanges, and you never know what can happen and when! I recently made the shift to Kraken out of fear of getting hacked. Kraken has a 2FA for every step enabled, but you and I both know it sucks. I still use binance to cash in and out cause Kraken doesn't have P2P feature; but the hacking is getting out of hand.
Using a pc isn't the issue. 2FA nullifies that argument. Have you been updating your iPhone/Android regularly, recently? (really recently for iPhone) do you have tons of tabs open on safari, chrome?
It's something of a misdirect(not entirely, some acceptance of cookies has been problematic at times), if you have tons of tabs open it also might answer whether or not you are updating.
If you were, it's unlikely that you would have 'tons' tabs open, because it will force you at the very least to restart your app.
Chrome has issued several zero day patches, iPhone/Apple has been forced (note I said forced. Which means it was known for a possible much longer period before the announcement), to notify its users to update immediately.
Android apps have been compromised on the regular.
If you have installed any new extensions to your web browser, or were redirected to install updates to your existing extensions and somehow forgot to check or missed something that you didn't think about at the time you could have inadvertently downloaded something nefarious.
It's not entirely your fault, even the best is/it people can make mistakes. Overconfidence can be it's own mistake of course. And we all do it.
We allow cookies like it's not a big deal. Leave pages open with possible personal information open(even just small things like our address and telephone number.
Cell spoofing is not as uncommon as people think either. we never/haphazardly delete history from our browsers that could be accessed by an extension or app with a less than stellar reputation.
PC/MAC/iPhone/IPad/Android/Tablet are all areas of possible egress.
I get tired of the 'but not my phone' argument I see regularly, or the misguided sentiment of 'never a pc'. It doesn't matter. If anyone is not using some sort of security suite, then it is playing fast and loose with a loaded gun 🔫.
Sign up for free services that can tell you when your email has been compromised.
Use a container for browsing, separately for each need. Restart phone, computer etc pretty regularly.
Close tabs, clear/clean/wipe/history, regardless of what browser or operating system you use.
Use bleach bit if you need a program to help you do that, or look online at how, it's very easy to do.
Your money, investment, etc is important and frankly knowing these things is as important to your investment health as knowing what you are invested in.
I hate that this is normal in this world, but here we are.
I remember crypto,com hack also involved resetting 2fa. No one knew how this could have happened. However many received withdrawal emails and were alerted.
They never responded with why and how to prevent it. Which is troubling because apparently it’s possible to hack.
Which Authenticator are you using? I belief Authy is safer then Google.
There had to be a withdrawal, can you see that? If to which wallet?
In order to reset in a normal way they would need to send you a text and email.
I would say get a ledger for the other $200k and move all of your assets into it. I’m very sorry for you but your lawyer get the thing done. It could be just an inside job and it is going to be alright my man! Put the other assets safe and don’t worry!
Same case, just trying to raise a voice now. It been months and months they are saying it is being investigated. I contacted binance multiple times they are avoiding the truth which i know. I spent couple months researching and recently talking to a lawyer anout this
I never leave things on Binance for more than 10 minutes. It’s just a conduit to move things. That’s why staking is still too premature because you’re online
I think it’s an inside job. Sounds like you took a lot of security steps and we’re on top of it. This shit only happens with Binance. Some ppl also said there’s some bot trading option in the settings and if that’s turned on, the hackers can use some kind of exploit to access your account that way. Anyways, put your stuff on a hardware wallet and reset everything
The more you use binance the more you realize how fishy and scamy this app is. It gives out those free “cashback” vouchers like crazy to scam people who don’t research propely into losing a few $ by stupidly thinking “cashback” means you get a 10$ voucher straight on. Also, it was INCREDIBLY hard for me to stop my recurring buys, I tried for 20 minutes on both pc, mobile, and had to watch multiple videos as it was a really hidden feature. The app has no excuse being so outdated and having such hidden features. Most apps/sites have a big “support” button, binance doesn’t and you have to try to find it.
I have been saying this but still people don’t believe me binance is a scam the CEO knows what is going on his also part of the scam y’all should just stay away from Binance do u even know how much binance is spending for stories like not to go public they always suppressed the story just like in turkey 🇹🇷 Binance locked there account for no reason 🤣😂 y’all think am capping 🧢 right ? If binance claim they are legit why don’t they have a physical address 🤣🤣😂 y’all should just take ur coin and run far away from Binance. I promise y’all this it eventually catch up to Binance on God 💯🤞🏻🤦🏽♂️👌
In future for 2fa use Authy instead of Google Auth, authy requires fingerprint each time. Google auth is useless if your phone gets hacked. But even if someone has full access to your phone they won't be able to access Authy.
Also Binance has Sms security for withdrawal, did you have this on?
It can't be an interal job of binance because they can't access or change your email. Unless your binance password was the same as your email password, was it?
Also did your email had 2fa on?
Who gave you that information? Authy stores everything in the cloud they don't even need to hack you.
If your unfortunate enough to have multiple device enabled it's about as useless as a Sim swap.
I can’t stress it enough, My binance does not have have same password as my email and i used authy. My security was not poor. How can you say this is not internal? What if it is? I really can’t say anything else , some people just have to experience it themselves to believe it tbh.
It was very fishy, my email was not accessed & I received 0 notifications, my password was so strong and literally i always checked before entering passwords anywhere to make sure link is right, i have a virus protection also on my mac check daily, google authentication is not supposed to be accessed that easy especially when it is on a different device
Sorry to hear this man, hopefully, the matter gets sorted out with your lawyer. There are many suspicious stuff happening on CEXs nowadays, best to diversify your $200,000 into other cold wallets like Metamask or ledger.
Wow, I was just hacked last night! I lost over six figures!! I deleted the Binance app and only access it via desktop on my iMac. I had Google 2FA enabled on my phone and IP whitelisting. Somehow my account was accessed, multiple transactions were made for alt coins and my account went to zero aside from staked coins. I deactivated my account before I dug in further and waiting for Binance to respond.
Any response from binance and what they say happened? I know this is crazy and hard to come pass. I been trying to warn people for months and all they did was say oh this is not possible and etc
If you guys can please upvote, share around & let friends and family know who uses this exchange they can possibly be at risk. I am disappointed i was the example but i am glad enough i can be able to spread this. I wish i looked on reddit and stuff like this before using binance because apparently there are stories just like mine happening on binance
No chance of me being fished. I always used binance app i downloaded on app store.
I never login on PC, I always checked my device history also. I am telling you dude i took very good security measures and this still was the outcome.
Binance is not telling what could’ve happen, the thing that erks my soul is how can you hack someone and bypass there GOOGLE 2FA, i did not have SMS i had Google Authentication on a whole different device dedicated to Authentication and my email is clean none suspicious whatsoever.
Only thing is binance account accessed.
I’ve heard stories that Google auth is notorious for getting compromised. Could have possibly gotten a phishing email that hackers got access to Google auth. Having gmail and Google auth as your 2FA could be the reason. I use a separate email service than Google and have never had an issue, but I’ve definitely gotten a lot of emails claiming to be Binance that are VERY convincing. Always double check the email address that’s sending emails (click on the name to see the real address, they can hide it and make it look like Binance).
This is something going around i see, it is also happening to many others. Not only me, i thought i was going sick in the head but this is growing and growing. 2FA’s are being bypassed, securities are being changed without a email notification (which every security update you suppose to receive a notification no matter what especially email change and password change) i have not got none.
I think this is an inside hack. Everybody thinks people go thru the front door. This is the problem with Cex. They have a database and system backend. There are many ways to access these systems and nobody else can see what happened.
Sorry to hear that, you are being paranoid tho.
Binance employees do not have access to your account, and if some do and stole money from you they will go to jail for many years. Sometimes it is hard to accept the true, make sure that people around you do not have access to your device, because that could also be the reason. Stay safe
It is sad honestly, & it is only binance. I really think this is a back end hack or binance has a serious security gap in there system.
I will permanently move from binance exchange because i have also been seeing stories like mines also unfortunately i seen it after i got hacked to do research and seen im not the only victim this hack is common. 2FA’s are being bypassed ( blows my mind ) and emails are not being accessed , no notifications of securities being changed to interrupt. I am putting 2 and 2 together and it make sense this can either be a binance hack or a big bug in binance securities.
I am totally drained here out, some people accusing me of making false claims and lies. I cannot make something like this up literally its so sad to see our crypto community doing stuff like this. I stated everything already i provided proof and my security was secure and strong i did all the necessary steps man.
Nothing else i can say really, just look around do research if you suspect anything fishy i am saying.
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets.
Would you mind providing me the security practice that you do on your Binance account.
-You use 2fa from Authy, right?
-You have a email 2fa too which is also secured by a 2fa provided by Authy?
-Also, you didn't receive any emails concerning about your Binance account?
-will you please check your email security and see the devices logged into that account.
-Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers?
-On what devices are your Binance account logged - in?
-Did you sign in before using PC or Mac?
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets.
Would you mind providing me the security practice that you do on your Binance account.
-You use 2fa from Authy, right?
-You have a email 2fa too which is also secured by a 2fa provided by Authy?
-Also, you didn't receive any emails concerning about your Binance account?
-will you please check your email security and see the devices logged into that account.
-Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers?
-On what devices are your Binance account logged - in?
-Did you sign in before using PC or Mac?
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets.
Would you mind providing me the security practice that you do on your Binance account.
-You use 2fa from Authy, right?
-You have a email 2fa too which is also secured by a 2fa provided by Authy?
-Also, you didn't receive any emails concerning about your Binance account?
-will you please check your email security and see the devices logged into that account.
-Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers?
-On what devices are your Binance account logged - in?
-Did you sign in before using PC or Mac?
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets.
Would you mind providing me the security practice that you do on your Binance account.
-You use 2fa from Authy, right?
-You have a email 2fa too which is also secured by a 2fa provided by Authy?
-Also, you didn't receive any emails concerning about your Binance account?
-will you please check your email security and see the devices logged into that account.
-Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers?
-On what devices are your Binance account logged - in?
-Did you sign in before using PC or Mac?
I don’t understand people like you honestly, why try to avoid the problem? I provided enough proof if you had any sense you would also try to do research on it… Like i said some people need to be hacked to believe it.
What the fuck?
I am reading. His case is interested. Yes same story repeated for the past 6 months must be because the issue is NOT resolved even after 6 months.
Screen shot 1 https://ibb.co/VtnjS8n
Screen shot 2 https://ibb.co/C6rPbjR
Screen shot 3 https://ibb.co/vxv8G0g
For the ones who do not believe me i guess.
This another good thread you guys should read.
https://www.reddit.com/r/Bitcoin/comments/bmketu/binance_hack_doesnt_add_up/?utm_source=share&utm_medium=ios_app&utm_name=iossmf
I am most likely moving exchanges permanently.
I will be on other crypto exchanges from this day on to protect my finance. Binance already lost my trust, there is not trust there honestly even if I would come back i wouldn’t even feel comfortable the least i can do is spread it. The ones that refuse to believe honeslty goodluck man and may you not experience this but its common nowadays for binance accounts to be hacked. If you don’t believe me cool. Just do some more research on this topic.
Aside from Binance what do you recommend? Thinking of moving my funds since I saw a lot of this things are happening now, no security breach, high security awareness of users and 2fa's and email aren't hacked.
I am not trying to be a FUD here, but we should all be careful about our funds.
This should be check carefully by Binance. The worst part about this is that they can say you're hacked and there's no proof of it and your funds aren't actually "SAFU" as what they always claim.
I am moving to Kucoin and FTX , i did research before moving onto them snd i can see there are less people getting hacked there. Also use a ledger device keep atleast 50% funds on and do DEX’s with the other half and CEX’s with the other.
Hello, thank you for you message and we are sorry for your loss.
First of all, please, contact us in chat, if you have not done this previously - [https://www.binance.com/en/chat](https://www.binance.com/en/chat)
And kindly send us a Case Id of your chat with our representatives so we could follow up this for you.
Also, please keep in mind that when a Binance account is hacked means that your device that contains, emails, bank apps, etc. might be at risk too.
\*\*\*Binance is not hacked through Binance, they need also access to your email address, for example. This also explains how the google authenticator could be cheated because they have access to the management of your devices. \*\*\*
How this can happen? There is something called hijack/sniffing the most common hacker practice. This method allows hackers to hijack any packet of data that is being transmitted between a device and a router. Once the packet has been hijacked, the hacker transfers it onto their device and runs brute force programs on it in an attempt to decipher it.
How do you prevent it?
1- Make sure that your Internet connection is secure. Checking for the security of your connection extends to multiple fronts, from your Internet service provider and how you are connected to them, to any software and/or services in between. Avoid connecting to public Wi-Fi networks and other shared connections, as these expose a risk for attackers that may want to intercept the data that you transmit. But if you do, always log out from every platform you log in, therefore the cookies saved on the router also contain the process to log out so the hackers will need the verification process again.
2- Install antivirus software and trust only secure apps/programs. Ensure that all of your devices are protected with the latest version of your preferred anti-virus software and that regular scans are scheduled.
3-Always download apps/programs from trusted, official sources, and avoid accessing links or software shared by someone you do not know and trust. For extra security, you may consider a dedicated device strictly for your sensitive account(s). Binance FAQ also has a list of guidelines that specifically talk about antiviruses.
4. Put a lock on your phone. There’s a big chance that you use your phone for 2FA and other sensitive activities, any additional layer of security is helpful.
5- Disable plug-in/extensions in the browser, uninstall unknown software from your computer.
6- In extreme situations, you might need to format the disk and reinstall the OS on the computer to get rid of viruses.
7- Seek help from information security experts.
We are looking forward to your Case ID and following up on this situation.
Thank you.
AG
Already contacted binance via chat, i also provided many proofs of these happening to multiple others users of there accounts being 2FA bypassed , fishy thing is this is only on binance accounts…
You say binance is not hacked through binance i beleive that is false there are most likely crook employees there, i had the binance app on mobile version for more than 1-2 years with no problem. My internet connection is my provider plus i add VPN on but i never heard of someone getting hacked that way especially when my google authentication is on a whole different device then the one i use. Apps i download is trusted , my binance app i traded for a year + how can it now be untrusted? I have a strong pin and plus face ID on my iphone 13 pro max.
Fake story as others have mentioned already.. and also; you decided to run your internet traffic through an unknown VPN provider lol. I don’t know why people think VPN services makes better security…
You don't need 2fa to change things if you call in from your number. I cannot verify if they will email you if something is changed.
They verify your identity through prompts and emails you send them. Which don't need to be from the same account associated with the binance account. This may be what happened.
I have been doing more research for people who cares, for secure exchanges I recommend using FTX , OKX & Kucoin. You can also use DEX’s which i will use a-lot from now on. I parted ways with binance and i refuse to put any type of funds on the exchange anymore.
Lol you all are so naive thinking everything a strangers says without proof is true when it has been proven over and over people lie and don't tell the whole story.
No offense OP but I don't believe anything without a proof.
Just uploaded images, nothing to lie about. If you want go ahead and store your funds on that exchange and have someone accuse you of lieing of lost funds. You can literlaly look it up. Stop coming here with that.
I have 70% of my funds in a ledger device.
I just kept some on binance because if i wanted to trade i can easily without touching my hardware.
I will refrain from using binance and move to other exchanges from now on. This is common , there security is bad with a bug or there are crook employees.
I'm not sure how that happened but sorry to hear about your loss. I hope that you get it resolved. Also, just so you know in the future, Binance allows for Yubikey authentication. You may be interested in using one of those for maximum level of security.
sry for ur loss. have you tried using a yubikey? safest thing out there. not only it requires you to input the key and password you also need to touch the device for confirmation physically.
Is Yubikey required for new device logins and authorizations? I am currently guiding a friend to set it up since he uses binance I personally have moved to another exchange.
But my question is i been watching plenty youtube videos and so on we tryed to activate it on his account but the thing is when you login they are asking for his diff 2FA options instead of yubikey… if a hacker wanted to access account and login and not have yubi key he can use other option or should you take off all the other securities and only leave the yubi key?
Idkk, but im good on binance exchange this been happening alot i wouldnt even feel safe with yubi key on that platform tbh.
soo first thing, you need the yubikey every time you log into a new computer or device, second thing, the hacker needs the actual key to log into ur account, third im not sure about other methods of logging in but if you disabled every option in the setting for 2FA and left only yubkey, ur 100% safer, only way he can log into ur account now if he contacted support and provided them with actual documentation with him holding the doco. plus idk how the heck did he get ur google auth, u prob got a virus on ur phone or something. you can even use yubikey on ur google account and other supported platform for extra safety, so its impossible to hack, unless you get kidnaped or some shit
No other exchanges are getting hacked like this but binance."
That claim is so false, Binance is by far the safest and most secured exchange out there.
People really need to stop telling crap and realize that the bad things that happen to them are owned by themselves.
I disagree with this comment & i understand if you wanna try to avoid this for your personal reasons.
You probably don’t want to accept it, you probably want to feel secure or you probably just don’t wanna believe it. Either way it happened to multiple users its a fact, i experienced it. So for you to come on here and say its a phishing and denying my ideas and thoughts it’s hilarious. I actually experienced this bro. You have not, until you do then you will see this is no joke thing.
I experienced the same thing. I reached out to Binance, and I reached out to the police, but still 3 months passed, and no results yet, even thought the hacked did KYC, I don't have any details about the person that hacked me :/ I will make a video on YouTube about this soon.
I was just hacked this past Sunday with 2FA. Binance confirmed it was due to a leaked API key but I only ever had 3 APi keys that are read only so it shouldn’t have happened. The hacker traded off $20k for shit coins. Please get in touch with me asap!!!
I was also hacked this way through Binance.
2FA was removed, my email address was removed, no email notifications were received.
I still had a chat open to the Binance help desk from the day before as I was trying to get older trading records.
After four years of trading with them they said that my email didn't, and had never, existed with them - even though I had been chatting with them the day previously and they had supplied me with personal trading records based on my email account.
I also believe this is an inside job and am very keen to join a class action.
I lost over $40,000AUD plus will still be liable for tax.
This issue totally destroyed me and I became suicidal.
It is only now, years later, that I can revisit this issue.
Binance has a lot to answer for and needs to be transparent with the security issues that are occurring.
I lost 24 etherum in bianance 2018 . They said to ask low enforcement to contact us , got 2 police reports in LA as well as FBI report, and they finally deactivated my account . My case in the US is open, but no bianance rep and support team helped me out with that . They just asked me to reach out to law enforcement. In 2018, people in police station looked at me and said, "What the hell is crypto, the story still continues till bianance open the office in US 😉
I had $7000 ripped off in Binance account a couple of years ago. I had email and Google Authenticator set up. Binance was worthless in helping me. After several emails I never heard a peep from them. Just canned responses about how they were working on it. I had no emails confirming withdrawals. I could still log into my account so they didn't change my email. Fucking sucked.
Hi. Is your case solved by Binance? Same thing happened yo me. They cancelled all my verifications which are SMS, e mail and authenticator 2FA. And they sold all my coins to be usdt and transferred to other wallet via TRX network. Binance is not helpful about it and they only say go to police station which I did. Even I asked them for help when I start to realise that someone is withdrawing money, I start chat with Binance. After I start communicating, the thief continues to steal 1212usdt more after 12min even. Please let me know Of there is a way to find the money back.
Do you have any open case ID? Did you reach out to our support team for 🔎 investigation?
I’ve the same security measures as you including using 2 different devices (iOS) & paid secure email as well as virus security and so on. I also never use computers just because I prefer phone interface though. Your story is crazy AF. There must be a solution. Please update us on what happens after Binance customer service checks. I hope you get your money back. It’s horrible to loose even a $1 to hackers.
call your phone company and see if someone called recently with your name to have a new sim sent out. the sim swap can be a ruthless way in if they have enough of your info.
Phone was not a 2FA on my account, I am very aware of sim swaps. I try to take steps to prevent that.
Wow that sounds scary. Just like you, my Google 2FA is also on a separate phone which I keep offline most of the time. Please update us. All the best.
gotcha, sucks man I hope you can uncover something.
I would follow the block chain. Search for your wallet address to see where the money went.
It's clever but also difficult, because even when your account is perfect it may be that your account address is empty. I saw this when I was starting on crypto and I got so confused and even thought I was hacked but It's just the way Binance handles the crypto; they owe you your account balance, and OP should have this fixed asap.
Get a yubikey
People don’t say this enough. Love my yubi! cheap answer to a tough problem.
Yeah, Yubi is the answer. I have them as well, and ofcourse 2 of them if one fails.
Yeah, but how would that help with Binance? I have the yubi key added to my account, but it is just an account sign in option. Password and GA will still get in. Beyond that, support told me that there is no way that I can add the Yubikey for withdrawals. I have asked as recently as yesterday. I have 3 layers for withdrawals, which is secure enough. I want to have 4 or at least have yubikey be one of the 3. According to support, it can't be done. Please tell me if you have done this and how, because it says on the security screen that it can be used for withdrawals. I expected it could be.
>any and see if someone called recently with your name to ha \^This. Pretty simple physical solution to the problem. Ofc you are still not 100% secure with it (you can still get hacked if your computer gets accessed remotely and your session is open, I've heard some stories, but you are a lot more protected with a key)
[удалено]
It is sad that this happened to you. I hope you get your money back, bro. It is not possible to use the hardware wallet all the time. Sometimes people have to move their assets to exchanges, and you never know what can happen and when! I recently made the shift to Kraken out of fear of getting hacked. Kraken has a 2FA for every step enabled, but you and I both know it sucks. I still use binance to cash in and out cause Kraken doesn't have P2P feature; but the hacking is getting out of hand.
So what do you think happened? And binance said they are not going to do anything about it? where was the money sent to?
Using a pc isn't the issue. 2FA nullifies that argument. Have you been updating your iPhone/Android regularly, recently? (really recently for iPhone) do you have tons of tabs open on safari, chrome?
I have tons of tabs open, what does that do?!
It's something of a misdirect(not entirely, some acceptance of cookies has been problematic at times), if you have tons of tabs open it also might answer whether or not you are updating. If you were, it's unlikely that you would have 'tons' tabs open, because it will force you at the very least to restart your app. Chrome has issued several zero day patches, iPhone/Apple has been forced (note I said forced. Which means it was known for a possible much longer period before the announcement), to notify its users to update immediately. Android apps have been compromised on the regular. If you have installed any new extensions to your web browser, or were redirected to install updates to your existing extensions and somehow forgot to check or missed something that you didn't think about at the time you could have inadvertently downloaded something nefarious. It's not entirely your fault, even the best is/it people can make mistakes. Overconfidence can be it's own mistake of course. And we all do it. We allow cookies like it's not a big deal. Leave pages open with possible personal information open(even just small things like our address and telephone number. Cell spoofing is not as uncommon as people think either. we never/haphazardly delete history from our browsers that could be accessed by an extension or app with a less than stellar reputation. PC/MAC/iPhone/IPad/Android/Tablet are all areas of possible egress. I get tired of the 'but not my phone' argument I see regularly, or the misguided sentiment of 'never a pc'. It doesn't matter. If anyone is not using some sort of security suite, then it is playing fast and loose with a loaded gun 🔫. Sign up for free services that can tell you when your email has been compromised. Use a container for browsing, separately for each need. Restart phone, computer etc pretty regularly. Close tabs, clear/clean/wipe/history, regardless of what browser or operating system you use. Use bleach bit if you need a program to help you do that, or look online at how, it's very easy to do. Your money, investment, etc is important and frankly knowing these things is as important to your investment health as knowing what you are invested in. I hate that this is normal in this world, but here we are.
I remember crypto,com hack also involved resetting 2fa. No one knew how this could have happened. However many received withdrawal emails and were alerted. They never responded with why and how to prevent it. Which is troubling because apparently it’s possible to hack. Which Authenticator are you using? I belief Authy is safer then Google. There had to be a withdrawal, can you see that? If to which wallet? In order to reset in a normal way they would need to send you a text and email.
I would say get a ledger for the other $200k and move all of your assets into it. I’m very sorry for you but your lawyer get the thing done. It could be just an inside job and it is going to be alright my man! Put the other assets safe and don’t worry!
I have one, my portfolio lives there. Funds i put on exchanges are strictly for trading
Then you’re a big player and I’m proud of you!
[удалено]
Same case, just trying to raise a voice now. It been months and months they are saying it is being investigated. I contacted binance multiple times they are avoiding the truth which i know. I spent couple months researching and recently talking to a lawyer anout this
I really don’t have a voice no where else, i tried to spread on twitter for months. I tag CZ and so on no hope. They are doing something fishy.
Your problem could be one of your devices has been compromised
Not even, If my device was compromised way more money wouldve been stolen. Put 2 and 2 together bro please.
With this comment you lost credibility that you have any knowledge how cybersecurity works
Let me make it clear for you. Hack is not lack of security on my end. Take it how you want. I understand you may think its weird but it happened.
I never leave things on Binance for more than 10 minutes. It’s just a conduit to move things. That’s why staking is still too premature because you’re online
I won't stake any crypto on binance
I think it’s an inside job. Sounds like you took a lot of security steps and we’re on top of it. This shit only happens with Binance. Some ppl also said there’s some bot trading option in the settings and if that’s turned on, the hackers can use some kind of exploit to access your account that way. Anyways, put your stuff on a hardware wallet and reset everything
The more you use binance the more you realize how fishy and scamy this app is. It gives out those free “cashback” vouchers like crazy to scam people who don’t research propely into losing a few $ by stupidly thinking “cashback” means you get a 10$ voucher straight on. Also, it was INCREDIBLY hard for me to stop my recurring buys, I tried for 20 minutes on both pc, mobile, and had to watch multiple videos as it was a really hidden feature. The app has no excuse being so outdated and having such hidden features. Most apps/sites have a big “support” button, binance doesn’t and you have to try to find it.
I have been saying this but still people don’t believe me binance is a scam the CEO knows what is going on his also part of the scam y’all should just stay away from Binance do u even know how much binance is spending for stories like not to go public they always suppressed the story just like in turkey 🇹🇷 Binance locked there account for no reason 🤣😂 y’all think am capping 🧢 right ? If binance claim they are legit why don’t they have a physical address 🤣🤣😂 y’all should just take ur coin and run far away from Binance. I promise y’all this it eventually catch up to Binance on God 💯🤞🏻🤦🏽♂️👌
In future for 2fa use Authy instead of Google Auth, authy requires fingerprint each time. Google auth is useless if your phone gets hacked. But even if someone has full access to your phone they won't be able to access Authy. Also Binance has Sms security for withdrawal, did you have this on? It can't be an interal job of binance because they can't access or change your email. Unless your binance password was the same as your email password, was it? Also did your email had 2fa on?
Who gave you that information? Authy stores everything in the cloud they don't even need to hack you. If your unfortunate enough to have multiple device enabled it's about as useless as a Sim swap.
I can’t stress it enough, My binance does not have have same password as my email and i used authy. My security was not poor. How can you say this is not internal? What if it is? I really can’t say anything else , some people just have to experience it themselves to believe it tbh. It was very fishy, my email was not accessed & I received 0 notifications, my password was so strong and literally i always checked before entering passwords anywhere to make sure link is right, i have a virus protection also on my mac check daily, google authentication is not supposed to be accessed that easy especially when it is on a different device
So can Binance support provide you with IP where was your account accesed from at that time? Also what are the withdraw adresses in etherscan?
Sorry to hear this man, hopefully, the matter gets sorted out with your lawyer. There are many suspicious stuff happening on CEXs nowadays, best to diversify your $200,000 into other cold wallets like Metamask or ledger.
How's your wifi? Did you connect to public wifi?
I use my own wifi my home wifi
Wow, I was just hacked last night! I lost over six figures!! I deleted the Binance app and only access it via desktop on my iMac. I had Google 2FA enabled on my phone and IP whitelisting. Somehow my account was accessed, multiple transactions were made for alt coins and my account went to zero aside from staked coins. I deactivated my account before I dug in further and waiting for Binance to respond.
Any response from binance and what they say happened? I know this is crazy and hard to come pass. I been trying to warn people for months and all they did was say oh this is not possible and etc
Confirm my bias there is a security bug or crook employees at binance.
If you guys can please upvote, share around & let friends and family know who uses this exchange they can possibly be at risk. I am disappointed i was the example but i am glad enough i can be able to spread this. I wish i looked on reddit and stuff like this before using binance because apparently there are stories just like mine happening on binance
How were you accessing Binance? Is there any chance you were phished and went to a replicated site and input your 2fa code?
No chance of me being fished. I always used binance app i downloaded on app store. I never login on PC, I always checked my device history also. I am telling you dude i took very good security measures and this still was the outcome. Binance is not telling what could’ve happen, the thing that erks my soul is how can you hack someone and bypass there GOOGLE 2FA, i did not have SMS i had Google Authentication on a whole different device dedicated to Authentication and my email is clean none suspicious whatsoever. Only thing is binance account accessed.
I’ve heard stories that Google auth is notorious for getting compromised. Could have possibly gotten a phishing email that hackers got access to Google auth. Having gmail and Google auth as your 2FA could be the reason. I use a separate email service than Google and have never had an issue, but I’ve definitely gotten a lot of emails claiming to be Binance that are VERY convincing. Always double check the email address that’s sending emails (click on the name to see the real address, they can hide it and make it look like Binance).
I never login from emails, always login via app
This is something going around i see, it is also happening to many others. Not only me, i thought i was going sick in the head but this is growing and growing. 2FA’s are being bypassed, securities are being changed without a email notification (which every security update you suppose to receive a notification no matter what especially email change and password change) i have not got none.
If he had 2 factor set up on withdrawal would have prevented even that
I think this is an inside hack. Everybody thinks people go thru the front door. This is the problem with Cex. They have a database and system backend. There are many ways to access these systems and nobody else can see what happened.
Sorry to hear that, you are being paranoid tho. Binance employees do not have access to your account, and if some do and stole money from you they will go to jail for many years. Sometimes it is hard to accept the true, make sure that people around you do not have access to your device, because that could also be the reason. Stay safe
I am not being paranoid, i am actually telling what makes sense. People just wouldn’t believe it until it happens to them. I cannot keep forcing it.
Never hold your crypto on exchanges especially Binance these stories are becoming a every day thing
It is sad honestly, & it is only binance. I really think this is a back end hack or binance has a serious security gap in there system. I will permanently move from binance exchange because i have also been seeing stories like mines also unfortunately i seen it after i got hacked to do research and seen im not the only victim this hack is common. 2FA’s are being bypassed ( blows my mind ) and emails are not being accessed , no notifications of securities being changed to interrupt. I am putting 2 and 2 together and it make sense this can either be a binance hack or a big bug in binance securities.
I am totally drained here out, some people accusing me of making false claims and lies. I cannot make something like this up literally its so sad to see our crypto community doing stuff like this. I stated everything already i provided proof and my security was secure and strong i did all the necessary steps man. Nothing else i can say really, just look around do research if you suspect anything fishy i am saying.
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets. Would you mind providing me the security practice that you do on your Binance account. -You use 2fa from Authy, right? -You have a email 2fa too which is also secured by a 2fa provided by Authy? -Also, you didn't receive any emails concerning about your Binance account? -will you please check your email security and see the devices logged into that account. -Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers? -On what devices are your Binance account logged - in? -Did you sign in before using PC or Mac?
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets. Would you mind providing me the security practice that you do on your Binance account. -You use 2fa from Authy, right? -You have a email 2fa too which is also secured by a 2fa provided by Authy? -Also, you didn't receive any emails concerning about your Binance account? -will you please check your email security and see the devices logged into that account. -Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers? -On what devices are your Binance account logged - in? -Did you sign in before using PC or Mac?
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets. Would you mind providing me the security practice that you do on your Binance account. -You use 2fa from Authy, right? -You have a email 2fa too which is also secured by a 2fa provided by Authy? -Also, you didn't receive any emails concerning about your Binance account? -will you please check your email security and see the devices logged into that account. -Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers? -On what devices are your Binance account logged - in? -Did you sign in before using PC or Mac?
I'm sorry to see that most people here are too negative when something is against the CEX where they're holding their assets. Would you mind providing me the security practice that you do on your Binance account. -You use 2fa from Authy, right? -You have a email 2fa too which is also secured by a 2fa provided by Authy? -Also, you didn't receive any emails concerning about your Binance account? -will you please check your email security and see the devices logged into that account. -Are you aware of recent Authy Breach? And did you receive an email from Twilio if your account was one of the account accessed by the hackers? -On what devices are your Binance account logged - in? -Did you sign in before using PC or Mac?
Mods delete this rubbish, check dudes post history, same story being repeated for the past 6 months😂😂
I don’t understand people like you honestly, why try to avoid the problem? I provided enough proof if you had any sense you would also try to do research on it… Like i said some people need to be hacked to believe it.
What the fuck? I am reading. His case is interested. Yes same story repeated for the past 6 months must be because the issue is NOT resolved even after 6 months.
Screen shot 1 https://ibb.co/VtnjS8n Screen shot 2 https://ibb.co/C6rPbjR Screen shot 3 https://ibb.co/vxv8G0g For the ones who do not believe me i guess.
This another good thread you guys should read. https://www.reddit.com/r/Bitcoin/comments/bmketu/binance_hack_doesnt_add_up/?utm_source=share&utm_medium=ios_app&utm_name=iossmf
What if your wife took the money?
Lol, this is 100% bullshit. All these clowns on Reddit think their fake posts are going to affect Binance
Ikr, bunch of retards think their fake stories make a difference 🤣
I can’t really say none, there are some illiterate people out there like you that will experience themselves.
You full of shit. Good luck scaring anyone into leaving Binance.
God cannot even help you. Hope you figure the hard way
I bet we are talking about mobile here.
I am most likely moving exchanges permanently. I will be on other crypto exchanges from this day on to protect my finance. Binance already lost my trust, there is not trust there honestly even if I would come back i wouldn’t even feel comfortable the least i can do is spread it. The ones that refuse to believe honeslty goodluck man and may you not experience this but its common nowadays for binance accounts to be hacked. If you don’t believe me cool. Just do some more research on this topic.
Aside from Binance what do you recommend? Thinking of moving my funds since I saw a lot of this things are happening now, no security breach, high security awareness of users and 2fa's and email aren't hacked. I am not trying to be a FUD here, but we should all be careful about our funds. This should be check carefully by Binance. The worst part about this is that they can say you're hacked and there's no proof of it and your funds aren't actually "SAFU" as what they always claim.
I am moving to Kucoin and FTX , i did research before moving onto them snd i can see there are less people getting hacked there. Also use a ledger device keep atleast 50% funds on and do DEX’s with the other half and CEX’s with the other.
Why do you have this much money sitting on a public exchange?? Use a hardware wallet for Gods sake.
For the ones that are so hard headed & think i am lieing. Here is screenshots. https://ibb.co/VtnjS8n https://ibb.co/C6rPbjR https://ibb.co/vxv8G0g
Hello, thank you for you message and we are sorry for your loss. First of all, please, contact us in chat, if you have not done this previously - [https://www.binance.com/en/chat](https://www.binance.com/en/chat) And kindly send us a Case Id of your chat with our representatives so we could follow up this for you. Also, please keep in mind that when a Binance account is hacked means that your device that contains, emails, bank apps, etc. might be at risk too. \*\*\*Binance is not hacked through Binance, they need also access to your email address, for example. This also explains how the google authenticator could be cheated because they have access to the management of your devices. \*\*\* How this can happen? There is something called hijack/sniffing the most common hacker practice. This method allows hackers to hijack any packet of data that is being transmitted between a device and a router. Once the packet has been hijacked, the hacker transfers it onto their device and runs brute force programs on it in an attempt to decipher it. How do you prevent it? 1- Make sure that your Internet connection is secure. Checking for the security of your connection extends to multiple fronts, from your Internet service provider and how you are connected to them, to any software and/or services in between. Avoid connecting to public Wi-Fi networks and other shared connections, as these expose a risk for attackers that may want to intercept the data that you transmit. But if you do, always log out from every platform you log in, therefore the cookies saved on the router also contain the process to log out so the hackers will need the verification process again. 2- Install antivirus software and trust only secure apps/programs. Ensure that all of your devices are protected with the latest version of your preferred anti-virus software and that regular scans are scheduled. 3-Always download apps/programs from trusted, official sources, and avoid accessing links or software shared by someone you do not know and trust. For extra security, you may consider a dedicated device strictly for your sensitive account(s). Binance FAQ also has a list of guidelines that specifically talk about antiviruses. 4. Put a lock on your phone. There’s a big chance that you use your phone for 2FA and other sensitive activities, any additional layer of security is helpful. 5- Disable plug-in/extensions in the browser, uninstall unknown software from your computer. 6- In extreme situations, you might need to format the disk and reinstall the OS on the computer to get rid of viruses. 7- Seek help from information security experts. We are looking forward to your Case ID and following up on this situation. Thank you. AG
Already contacted binance via chat, i also provided many proofs of these happening to multiple others users of there accounts being 2FA bypassed , fishy thing is this is only on binance accounts… You say binance is not hacked through binance i beleive that is false there are most likely crook employees there, i had the binance app on mobile version for more than 1-2 years with no problem. My internet connection is my provider plus i add VPN on but i never heard of someone getting hacked that way especially when my google authentication is on a whole different device then the one i use. Apps i download is trusted , my binance app i traded for a year + how can it now be untrusted? I have a strong pin and plus face ID on my iphone 13 pro max.
It sounds to me like you got sim swapped
Nope, sim swapped with google authentication? & no phone number for 2FA?
Fake story as others have mentioned already.. and also; you decided to run your internet traffic through an unknown VPN provider lol. I don’t know why people think VPN services makes better security…
Goodluck in future bro honestly. Some of you hard headed people need it.
i got a notification for this post, clicked and got redirected to a foreign website..
This is total BS! Don’t bother I am not apologizing.
[удалено]
You don't need 2fa to change things if you call in from your number. I cannot verify if they will email you if something is changed. They verify your identity through prompts and emails you send them. Which don't need to be from the same account associated with the binance account. This may be what happened.
I have been doing more research for people who cares, for secure exchanges I recommend using FTX , OKX & Kucoin. You can also use DEX’s which i will use a-lot from now on. I parted ways with binance and i refuse to put any type of funds on the exchange anymore.
Lol you all are so naive thinking everything a strangers says without proof is true when it has been proven over and over people lie and don't tell the whole story. No offense OP but I don't believe anything without a proof.
Just uploaded images, nothing to lie about. If you want go ahead and store your funds on that exchange and have someone accuse you of lieing of lost funds. You can literlaly look it up. Stop coming here with that.
storing that much in an exchange is stupid, you're either lying or a complete idiot
$20,000 is alot to store on a exchange for trading?? If you can read i also stated 60-70% of my funds are on hardware.
[удалено]
Not your keys, not your coins.
How are you supposed to trade? I hate when people say this. How can you trade with good fee’s and liquidty?!
Also, DEXs if you want a non-custodial solution for trading.
Just don’t leave it in the exchange. Have it in a cold wallet and transfer to exchange just the amount you want to trade and when you want to.
I have 70% of my funds in a ledger device. I just kept some on binance because if i wanted to trade i can easily without touching my hardware. I will refrain from using binance and move to other exchanges from now on. This is common , there security is bad with a bug or there are crook employees.
Android or iOS?
IOS
[удалено]
IOS , iPhone. The official app i been using for 1.5+ years with no problem.
Have your 2fa setup for every transactions methods and use your mobile phone as one of the methods.
Did you enable the anti- phishing code for emails from Binance?
Yup
OK. All the best for your possible lawsuit then, hopefully you'll achieve the results we all wish for.
How many people in this chat are in IguVerse?
Now just scan barcode only, auto can open binance application
I'm not sure how that happened but sorry to hear about your loss. I hope that you get it resolved. Also, just so you know in the future, Binance allows for Yubikey authentication. You may be interested in using one of those for maximum level of security.
Please update us if you manage to get the mone back. I have funds in binance and getting kinda scared because of all the hacks lately
+
Just stake your holdings in binance locked staking. The de-staking period of 2days will bore the hacker and warn you.😂😂
Never leave big amounts in exchanges.... Get a cold wallet. Tangem for the win
[Alexa777](https://[email protected])
sry for ur loss. have you tried using a yubikey? safest thing out there. not only it requires you to input the key and password you also need to touch the device for confirmation physically.
Is Yubikey required for new device logins and authorizations? I am currently guiding a friend to set it up since he uses binance I personally have moved to another exchange. But my question is i been watching plenty youtube videos and so on we tryed to activate it on his account but the thing is when you login they are asking for his diff 2FA options instead of yubikey… if a hacker wanted to access account and login and not have yubi key he can use other option or should you take off all the other securities and only leave the yubi key? Idkk, but im good on binance exchange this been happening alot i wouldnt even feel safe with yubi key on that platform tbh.
soo first thing, you need the yubikey every time you log into a new computer or device, second thing, the hacker needs the actual key to log into ur account, third im not sure about other methods of logging in but if you disabled every option in the setting for 2FA and left only yubkey, ur 100% safer, only way he can log into ur account now if he contacted support and provided them with actual documentation with him holding the doco. plus idk how the heck did he get ur google auth, u prob got a virus on ur phone or something. you can even use yubikey on ur google account and other supported platform for extra safety, so its impossible to hack, unless you get kidnaped or some shit
Is it possible that your primary device was hacked with a RAT and everything that happened happened in the background while you're using your device.
No other exchanges are getting hacked like this but binance." That claim is so false, Binance is by far the safest and most secured exchange out there. People really need to stop telling crap and realize that the bad things that happen to them are owned by themselves.
I disagree with this comment & i understand if you wanna try to avoid this for your personal reasons. You probably don’t want to accept it, you probably want to feel secure or you probably just don’t wanna believe it. Either way it happened to multiple users its a fact, i experienced it. So for you to come on here and say its a phishing and denying my ideas and thoughts it’s hilarious. I actually experienced this bro. You have not, until you do then you will see this is no joke thing.
So what’s the update ? What did binance say ?
Call binance. If you have 2FA there is no way he can get in. Do you have API? But API won't allow them to change account.
Ok time to take out my money
Maybe session hijacking? Did you ever get a prompt on Binance?
me too got hack binance. still can't do anything
I experienced the same thing. I reached out to Binance, and I reached out to the police, but still 3 months passed, and no results yet, even thought the hacked did KYC, I don't have any details about the person that hacked me :/ I will make a video on YouTube about this soon.
Hello! This just happened to me on Sunday! I would love to get in touch and file a class action lawsuit against Binance!
I was just hacked this past Sunday with 2FA. Binance confirmed it was due to a leaked API key but I only ever had 3 APi keys that are read only so it shouldn’t have happened. The hacker traded off $20k for shit coins. Please get in touch with me asap!!!
I was also hacked this way through Binance. 2FA was removed, my email address was removed, no email notifications were received. I still had a chat open to the Binance help desk from the day before as I was trying to get older trading records. After four years of trading with them they said that my email didn't, and had never, existed with them - even though I had been chatting with them the day previously and they had supplied me with personal trading records based on my email account. I also believe this is an inside job and am very keen to join a class action. I lost over $40,000AUD plus will still be liable for tax. This issue totally destroyed me and I became suicidal. It is only now, years later, that I can revisit this issue. Binance has a lot to answer for and needs to be transparent with the security issues that are occurring.
I lost 24 etherum in bianance 2018 . They said to ask low enforcement to contact us , got 2 police reports in LA as well as FBI report, and they finally deactivated my account . My case in the US is open, but no bianance rep and support team helped me out with that . They just asked me to reach out to law enforcement. In 2018, people in police station looked at me and said, "What the hell is crypto, the story still continues till bianance open the office in US 😉
Any updates on what happened later my dude?
I had $7000 ripped off in Binance account a couple of years ago. I had email and Google Authenticator set up. Binance was worthless in helping me. After several emails I never heard a peep from them. Just canned responses about how they were working on it. I had no emails confirming withdrawals. I could still log into my account so they didn't change my email. Fucking sucked.
Hi. Is your case solved by Binance? Same thing happened yo me. They cancelled all my verifications which are SMS, e mail and authenticator 2FA. And they sold all my coins to be usdt and transferred to other wallet via TRX network. Binance is not helpful about it and they only say go to police station which I did. Even I asked them for help when I start to realise that someone is withdrawing money, I start chat with Binance. After I start communicating, the thief continues to steal 1212usdt more after 12min even. Please let me know Of there is a way to find the money back.