Phishing is a type of social engineering attack where scammers attempt to obtain information, such as usernames, passwords, two-factor authentication (2FA) codes, etc., by disguising themselves as a person or entity you trust. For more details, please visit How to Prevent Phishing Attacks.
Hackers created a fake Binance website (https://www.binance.com.com/) and manipulated users to visit it via a Facebook page. Once users log in to the fake website, hackers can steal their Binance account credentials.
The fake website also asked users to enter their Google 2FA backup key, so hackers can gain full access to users’ Binance accounts. Please note that Binance will never ask you to share your Google 2FA backup key in any case.
Hackers used a fake Binance website to trick users into installing malware. Please do not install any unknown software or browser plug-ins on your computer/smartphone.
Hackers directed users to another fake Binance website and tricked them into moving their assets to a “secured wallet” as soon as possible. Please note that Binance will never ask you to move your funds to another wallet.