Binance has issued a warning about a malware attack targeting its users, which alters cryptocurrency withdrawal addresses.
The malware replaces a user’s intended withdrawal address with that of the scammer, leading to irreversible financial losses if the user does not notice the change before completing the transaction.
Since August 2024, this sophisticated malware has been spreading, with attackers using it to divert funds to their wallets. Binance’s security team is actively blocking and reporting these malicious addresses and alerting affected users. They are also blacklisting suspicious addresses and coordinating with law enforcement.
Users are advised to exercise extreme caution when downloading applications or browser extensions, particularly from unofficial sources, and to double-check withdrawal addresses. Binance suggests taking screenshots of wallet addresses before confirming transactions as an additional safeguard.
Additionally, a fraudulent website pretending to offer help with the malware issue has emerged. This site, which misuses Binance’s branding, attempts to trick users into granting unauthorized access to their wallets. Binance emphasizes that these scammers exploit victims already affected by the malware, highlighting the importance of vigilance against such deceptive schemes.
The scheme targeted working class individuals, promising them financial freedom.
Vietnamese police arrested five individuals tied to a cryptocurrency scam led by offshore criminals.
During the third quarter of 2024, cryptocurrency thefts surpassed $127 million, with September contributing around $46 million.
A Russian cybercrime group is reportedly leveraging a series of AI-generated websites to implement software aimed at stealing cryptocurrency wallet credentials.