TLDR
- BNB Chain’s official X account was compromised by hackers who posted phishing links targeting cryptocurrency wallets.
- Binance founder Changpeng Zhao confirmed the breach and advised users not to connect their wallets to suspicious links.
- BNB Chain’s security team quickly took action, notifying X and submitting takedown requests for the phishing websites.
- Experts suggest the Inferno phishing group may be behind the attack, known for using sophisticated wallet-draining tactics.
- The breach raises concerns about BNB Chain’s security practices and awareness in protecting official accounts from hacks.
BNB Chain’s official X account, with nearly four million followers, may have been compromised on Wednesday. Hackers allegedly took control of the account and posted phishing links. These links targeted cryptocurrency wallets, attempting to steal sensitive data from users.
Hackers Spread Phishing Links Through BNB Chain’s X Account
Binance founder Changpeng “CZ” Zhao confirmed the attack on his X account. He warned followers to avoid interacting with the malicious posts. “Do NOT connect your wallet,” Zhao cautioned, advising users not to click on any suspicious links.
BNB Chain’s security team quickly responded to the breach. They notified X, the platform hosting the account, and began efforts to suspend the account. The team also submitted takedown requests for the phishing websites linked to the hack.
ALERT 🚨: The @BNBCHAIN X account is compromised.
The hacker posted a bunch of links to phishing websites that ask for Wallet Connect.
Do NOT connect your wallet.
Security teams have notified X already, working to suspend the account first, then restore access.
Also take-down… https://t.co/QeEnCCbFZe
— CZ 🔶 BNB (@cz_binance) October 1, 2025
Security experts identified the method used by the attackers. According to 23pds, a security officer at SlowMist, the hackers altered a letter in the domain name. This trick made the phishing website appear legitimate and deceived potential victims.
Inferno Phishing Group Suspected Behind the Attack
Security researchers suspect that the Inferno phishing group is responsible for the attack. The group has been known for its wallet-draining software and phishing-as-a-service platform. It allows affiliates to deploy fake crypto project sites to steal users’ funds.
BNBchain英文官推被盗!
恶意钓鱼网站 把字母 i 换成 l ,恶意域名 bnbchalns[.]com 属于 inferno 钓鱼团伙. @evilcos 🤣别交互! @cz_binance 币安链团队的安全意识不应该这么差啊🤔 https://t.co/92pIg76xGP pic.twitter.com/hzMf6id2uC— 23pds (山哥) (@im23pds) October 1, 2025
The Inferno Drainer gained notoriety in 2023 due to its sophisticated techniques. This incident raises questions about the security practices of BNB Chain.
“BNB Chain’s security awareness shouldn’t be this poor,” said 23pds in his post on X.
At the time of writing, the phishing posts were no longer visible. However, it remains unclear if any users fell victim to the attack. BNB Chain has taken steps to prevent further damage and restore access to the official X account.
