Web3 enthusiast and crypto entrepreneur Joe Zhou has flagged a new phishing SMS message scam related to the Binance exchange. According to the victim, the hacker sent an SMS message from the usual Binance number, where he typically receives verification codes, and attempted to lure him into transferring his assets to a Safepal wallet.
A phishing SMS message hack related to the Binance exchange has re-emerged days after Bybit experienced one of the largest crypto exchange hacks in history. Joe Zhou, a Web3 expert from Hong Kong, flagged the hacking technique through a LinkedIn post after falling victim to a phishing message.
Je Zhou falls victim to a Binance-related phishing attack
According to Joe Zhou, the scammers sent him a message through the usual Binance exchange number where he typically receives his verification codes. The message cautioned him that his Binance account was being accessed from North Korea, prompting him to take immediate action to attempt to save his funds from being drained from his Binance wallet after what happened to Bybit.
Joe Zhou explained that he instantly called the number that had sent the SMS, and an individual he believed had a strong British accent picked up the call. The alleged scammer instructed Joe Zhou to set up a SafePal wallet, claiming that the wallet provider had partnered with Binance. The scammer sent Joe Zhou an article published by Binance on the SafePal wallet and managed to convince him that the partnership was real.
The scammer then continuously asked Joe Zhou how much was in his Binance account and solicited him to transfer all the funds to the newly created SafePal wallet. Joe Zhou, unaware of the hack, began to transfer funds to the new wallet following the instructions from the hacker. However, he was reluctant about the entire scene and decided to consult his friend who works at Binance. The friend instantly informed him that he was being scammed.
“I followed the instructions to set up a wallet and started withdrawing my funds out of my Binance account. But I already sensed something was wrong. Luckily I have my good friend Carlos M. from Binance. I checked with him and realized I had been scammed.”
~ Joe Zhou
Joe Zhou began transferring funds from the SafePal wallet in an attempt to retrieve his digital assets. According to the victim, the scammer realized he was sending his funds back to the Binance exchange account and began moving the funds as well.
Zhou explained that he finally ran out of gas fees during the last transaction, after which the hacker sent some ETH as gas to the wallet and withdrew the remaining funds. At the end of the ordeal, Zhou said he lost only 200U and cautioned his LinkedIn audience to be smart and always be on the lookout.
Binance exchange impersonation hacks are not new
This type of phishing hack is not new to the Binance exchange. Binance Risk Sniper, a verified Binance official account, published an article dated November 2024 that detailed a similar phishing attack. According to the article, a fake Binance SMS attack was sweeping users in Sweden, Lithuania, and other European countries.
The article explained that scammers impersonate Binance and send SMS messages to users, falsely claiming that their accounts have security breaches, like abnormal API issues. The messages aim to create panic and anxiety among Binance users and guide them to communicate directly with them, as recently happened to Joe Zhou.
The scammers then convince users to transfer their funds to a TrustWallet that they claim will ensure the security of the users’ assets. The scammers develop this wallet in advance and give the victims its seed phrase while presenting it as a secure alternative. Unfortunately, the wallet remains in the full control of the scammers. Once users transfer their funds to this TrustWallet, the scammers immediately gain access to the assets through the provided seed phrase and withdraw instantly.
