You receive a security alert from Binance: "Your account was logged in on a new device" -- but that wasn't you. Or you open the APP to find your wallet balance is off, with unfamiliar transaction records. These are signs your account may have been compromised, and you must act immediately.
If you don't yet have a Binance account but plan to use one in the future, register a Binance account and complete all security settings right away. If you already have an account, make sure to get the Binance APP and keep it updated.
Actions to Complete Within 60 Seconds
Action One: Disable Your Account
This is the most critical step. Disabling freezes all account functions -- login, trading, and withdrawals are all suspended, immediately cutting off the intruder's access.
If you can log in: Open APP > Profile > Security Center > Disable Account > Confirm.
If you cannot log in:
- Check your email for Binance security alerts -- there's usually a "Freeze Account" link at the bottom
- Visit the Binance website and find the live support entry, request emergency freeze
- Use the freeze option in the forgot password flow
Action Two: Change Your Email Password
Account intrusion often starts with email compromise. Immediately change your email password, check for added forwarding rules, and enable two-factor authentication on your email.
Assessment Phase
After disabling the account, you have buffer time. Collect information about abnormal withdrawal records, unauthorized trades, modified security settings, newly created API keys, and unfamiliar addresses added to the withdrawal whitelist.
Save evidence screenshots of everything abnormal.
Contact Binance Official Support
Use the in-app/website live chat (most direct), or submit a security incident ticket. State your UID, the time you discovered the anomaly, and that you've already disabled the account.
Account Recovery and Security Rebuild
After Binance confirms safety and unfreezes your account:
Password: Use a completely new, strong password (16+ characters)
Verification: Re-bind Google Authenticator, save backup key, consider a hardware security key
Device cleanup: Remove unfamiliar devices and API keys
Advanced protection: Set anti-phishing code, enable withdrawal whitelist, ensure login notifications are active
New users who register a Binance account should set up all these protections from the start.
Common Attack Vectors
- Phishing websites: Most frequent attack method
- Password reuse: Leaked credentials from other sites
- SIM card hijacking: Social engineering to port your number
- Malware: Keyloggers or remote access trojans
Prevention: Only access Binance through bookmarks or get the Binance APP and operate directly within it.
About Asset Recovery
Honestly, once crypto is transferred away, recovery is very difficult. However, if the withdrawal hasn't confirmed yet, freezing can intercept it. Binance cooperates with law enforcement. The SAFU fund covers platform-side security incidents. Strongly recommend filing a police report.
FAQ
Q: No assets lost, just abnormal login -- should I still act? A: Absolutely. The attacker may be preparing (collecting info, planting API keys) and could cause real damage any moment.
Q: Someone claiming to be Binance support asks for a deposit to unfreeze -- is it real? A: 100% a scammer. Binance will never ask you to transfer money to unfreeze your account.
Q: Are hardware security keys worth buying? A: If your account holds significant value, highly recommended. Hardware keys like YubiKey are among the most secure verification methods available.