|
Getting your Trinity Audio player ready...
|
The official X account of BNB Chain, followed by nearly four million users, was compromised on Wednesday, exposing the crypto community to a wave of phishing attacks. Hackers used the account to distribute links that mimicked Wallet Connect prompts, aiming to steal funds from unsuspecting cryptocurrency holders.
Hackers Linked to Notorious Inferno Drainer Group
SlowMist’s Chief Information Security Officer, known online as 23pds, confirmed that the phishing domains behind the attack are tied to the Inferno Drainer, a phishing-as-a-service platform infamous for draining crypto wallets. The group, active since 2022 and gaining notoriety in 2023, provides affiliates with ready-made phishing websites that replicate legitimate project interfaces.
In this incident, attackers disguised the phishing domains by subtly changing letters in URLs to appear authentic. As 23pds noted, one domain replaced the letter “i” with “l” to trick users into believing the link was safe.
BNB Chain and Binance Take Action
Binance founder Changpeng “CZ” Zhao addressed the breach on X, warning followers not to click on any malicious links. He confirmed that BNB Chain’s security team has notified X and is working to suspend the compromised account while restoring access. Takedown requests for the phishing domains have also been submitted.
A BNB Chain spokesperson told Cointelegraph that their team is investigating the situation and will provide updates once more details are available. At the time of reporting, the phishing posts were no longer visible, though it remains unclear whether any users connected their wallets and lost funds.
Community Warned to Stay Vigilant
Zhao emphasized the importance of verifying domains, even when links originate from official or verified accounts. “Always check the domains very carefully, even from official X handles. Stay SAFU!” he wrote.
The incident has sparked discussions around the security practices of crypto projects. 23pds noted that while official accounts are prime targets for phishing attacks, teams must maintain higher levels of security awareness to prevent breaches.
The BNB Chain X account compromise serves as a stark reminder of the persistent threats facing cryptocurrency users. Even official, verified accounts can be hijacked, highlighting the need for vigilance when interacting with links and performing wallet operations. As the crypto ecosystem continues to grow, heightened security measures and user awareness remain essential to protect digital assets.
Disclaimer: The information in this article is for general purposes only and does not constitute financial advice. The author’s views are personal and may not reflect the views of Chain Affairs. Before making any investment decisions, you should always conduct your own research. Chain Affairs is not responsible for any financial losses.
I’m your translator between the financial Old World and the new frontier of crypto. After a career demystifying economics and markets, I enjoy elucidating crypto – from investment risks to earth-shaking potential. Let’s explore!
