Hi,
I was a victim of a Binance account hack yesterday 11/9/21 approximately midnight AEST or 1400hrs UTC time.
Someone with an IP address from the UK (I don't live there) hacked into my Binance account, which has significant amount of funds and pretty much all my life savings. I am sure his real identity is not from the UK as he is probably using a VPN.
I was awake at the time and was able to, struck with panic, disable my account.
I also found out that my email was hacked into by the same IP address. The hacker was able to reflect any incoming emails from Binance away from my email (I have absolutely NO idea how given that none of the rules/default settings were changed in my account settings). Thus, I was unable to change my email attached to my Binance account as an email verification code is required to do this. I'm not sure how he even hacked into my email (my email has 2FA). I quickly changed my password and reset my Google 2FA on my email account.
Another finding was that I received two suspicious messages from "Binance" with poor grammar stating that someone had applied to reset for Google Authentication, SMS Authentication and failed on facial detection over 3 times. I'm not sure if these were spoof messages, or legit messages from Binance. I mean, why would the hacker send these messages to me in the first place. Wouldn't he want to leave no trails and just hack and leave with my funds?
I was able to contact Binance support and they are in the process of restarting my account after I was able to prove my identity through video and holding legitimate versions of my photo ID.
Does anyone know the likely mechanism by which the hacker was able to gain access to my email even though my email was protected with Google 2FA?
I also learnt that SMS Authentication is a very bad idea and I won't be using this method for my Binance account in the future.
Any advice/insight into this incident is highly appreciated.
Thanks guys
UPDATE @ 0945hrs AEST 1145hrs UTC - pending photo verification results - have already waited ~16 hours for this. I am getting extremely anxious as I can't manage my funds at all at this time. It's been almost 36 hours since I got hacked.
Update @ 0955hrs AEST 1155hrs UTC - my case has been escalated to a specialist.
Update @ 1110hrs AEST 1355hrs UTC - no response from Binance.
Update @ 1435hrs AEST 1655hrs UTC - received a SMS from Binance suggesting that I need to upload more evidence. I have uploaded the evidence again. No reply yet.
[link] [comments]
You can get bonuses upto $100 FREE BONUS when you:
π° Install these recommended apps:
π² SocialGood - 100% Crypto Back on Everyday Shopping
π² xPortal - The DeFi For The Next Billion
π² CryptoTab Browser - Lightweight, fast, and ready to mine!
π° Register on these recommended exchanges:
π‘ Binanceπ‘ Bitfinexπ‘ Bitmartπ‘ Bittrexπ‘ Bitget
π‘ CoinExπ‘ Crypto.comπ‘ Gate.ioπ‘ Huobiπ‘ Kucoin.
Comments