Binance Impersonation Scams
Fraudsters impersonate Binance through fake KYC verification emails and phishing sites. Binance will never ask you to confirm your identity by sending cryptocurrency to an external address.
Last reviewed: 1 June 2026
Binance is the world's largest crypto exchange by trading volume, so its brand is frequently exploited by scammers. Common attacks include fake 'KYC expiry' emails that lead to credential-harvesting sites, and Telegram accounts posing as official Binance support.
Because Binance serves millions of users globally, a broadly targeted phishing campaign will always reach genuine customers — making the attacks highly effective. The universal defence is never to act on any communication that pushes you toward a link or an external transfer.
How scammers impersonate it
- Sending emails claiming KYC verification has expired and must be renewed via a link
- Creating fake Binance support accounts on Telegram and Twitter/X
- Registering domains that closely resemble Binance (e.g., 'binance-support.net')
- Posting fake 'recovery service' ads targeting users who have already lost funds
- Sending SMS with account-suspension notices linking to phishing pages
What the real organisation never does
- Request your password, private keys, or seed phrase at any time
- Ask you to send funds to an external wallet to unlock your account
- Contact you via unofficial Telegram channels for support
- Demand urgent action on KYC via an unsolicited email link
Common red flags
- Emails about KYC expiry with a link rather than directing you to log in normally
- Telegram accounts claiming to be Binance support and asking for screenshots of your account
- Domains that are close but not exactly binance.com
- Requests for your 2FA code or recovery phrase
- Promises to recover lost crypto funds in exchange for an upfront fee
Sanitized example messages
Illustrative, sanitized examples. Personal details are replaced with placeholders such as [phone number] and [fake link].
Email: 'Your Binance KYC verification expired on [date]. Click here to re-verify or your account will be suspended: [phishing link].'
Telegram: 'Hi, I am from Binance Support. Please send your API key and secret so we can investigate your account issue.'
How to verify
- Always navigate to binance.com directly — never click links in unsolicited emails
- Binance official support is accessed only through the in-app chat or the official website help centre
- Check the Binance Verify tool at binance.com/en/official-verification to confirm if a channel is genuine
- Enable anti-phishing codes in your Binance account settings so genuine emails include your custom code
What to do if you're targeted
- Do not provide any credentials, codes, or funds
- Report fake sites and messages to Binance at [email protected]
- Change your password and revoke any compromised API keys immediately
Frequently asked questions
What is an anti-phishing code on Binance?
It is a personalised phrase you set in your Binance security settings. All genuine Binance emails include it, so any email without your exact code is fake.