The official account X of the BNB Blockchain network of the BNB channel, with nearly four million followers, was compromised on Wednesday. The pirates used the account to distribute phishing links targeting cryptocurrency wallets.
The founder of Binance, Changpeng “CZ” Zhao, confirmed the incident, warning his supporters not to interact with the malicious posts containing phishing ties. “The pirate has published a bunch of links to phishing websites that require Wallet Connect. Do not connect your wallet,” wrote CZ.
He added that the BNB channel security teams informed X and work to suspend the account and restore access. Zhao said that withdrawal requests for phishing sites had already been submitted.
A member of the BNB channel team told Cintelegraph that his team currently investigated and will share more information shortly.
Phishing links disguised as portfolio connection prompts
Slowmist’s information security director, who goes through the 23PDS handle on X, said that the attackers used a classic tip, exchanging letters in the phishing field to make it legitimate.
“BNB Chain’s official English account has been hacked! The phishing website has changed the letter I to L,” published 23pds, warning users not to be deceived. The security professional also suggested that the malicious field belongs to the inferno-phishing group.
The Inferno Draneur is Crypto portfolio drainage software and a phishing platform as a service that emerged around 2022 and gained notoriety in 2023. It works by allowing its affiliates to deploy ready-to-use phishing sites that imitate legitimate cryptographic project interfaces.
The incident highlights the challenges in the protection of official accounts of the control cryptography project. Slowmist Ciso suggested that the violation raises questions about the team’s security practices.
“Consciousness of the security of the BNB channel team should not be so poor,” said 23pds.
In relation: Hide your crypto: infamous discord of discord “ Try my game ”
CZ warns users to carefully check the areas
In his post X, Zhao advised members of the community to always check the areas even when the links come from official or verified social handles. “Always check the areas very carefully, even from official handles X. Stay SAFU!” He wrote.
At the time of writing this document, phishing publications were no longer visible, but it remains uncertain if users connected their portfolios or their lost funds.
Review: Avalanche in Deal with Etf Giant, Yuan Stablecoin ‘Fake News’: Asia Express