Exchange
區塊鏈和數字貨幣交易所
Academy
區塊鏈及數字資產學習平台
Broker
低成本交易終端解決方案
Charity
慈善
Cloud
一站式交易所解决方案
DEX
安全高效的去中心化數字資產交易平臺
Labs
頂尖區塊鏈項目孵化器
Launchpad
代幣發售平台
Research
機構級分析和報告
Trust Wallet
幣安官方數字貨幣錢包
買幣
市場
一鍵換幣
幣幣閃兌,壹鍵完成交易
標準版
簡潔清爽的交易工具,適合新手使用
專業版
全屏版交易,所有操作壹個屏幕完成
槓桿交易
借幣交易,放大收益
買幣
快速轉賬並支持100多種支付方式
股票代幣
New
數字貨幣交易股票
交易
掃描以下載IOS和Android APP
下載
English
USD
幫助中心
常見問題
Security
Security Tips
此文章暫不支持您的語言,為您智能推薦英文版。
Examples of Phishing Emails
Binance
2018-12-11 11:43

Phishing is a type of social engineering attack; a fraudulent attempt to obtain sensitive information such as username, password, 2FA code, etc by disguising as Binance in electronic communication.

1. Phishing Email Example 1

This email below was created by hackers to steal the user’s email account, password and 2FA backup key

  • Phished email was sent from a scam  Binance <do-not-reply19@www--binance.com> addressmceclip0.png
  • If you hover over the Verify Email button, you can see the phished link which in this case was  
    https://www--binance.com/binance/login.php?id=xxxx@axxxxl.xxm.  After clicking the button one can see this page:mceclip1.png
  • Unfortunately, some victims will fill in their Binance email account and password data on the scam ‘www--binance.com’ website. After clicking the Log In button, the hacker will have prepared a special dialog window as seen below:mceclip2.png
  • It is really unfortunate that some victims will decide to disclose their ‘2FA backup keys’ without hesitation. At this point, the hacker will have successfully collected the victim’s username/password/2FA - thus gained full access to the victim’s accounts.

2.  Phishing Email Example 2

  • The phishing email below persuaded users to download a fake PDF file which was actually malware/virus/Trojan software.                                                                     mceclip3.png

3. Phishing Email Example 3

The phishing email below instructed users to click a malicious link in order to receive a nonexistent 0.129 BTC.

Please note:

When you notice such a message, it’s always best to hover over the link to see where it points. 

mceclip4.png

4.  Phishing Email case 4

  • The phishing email below instructed users to click a malicious link in order to participate in a competition called ETH Giveaway. Once again, the email was sent from an email address that was not an official Binance email. mceclip5.png

 

 

相關文章
Security Tips