Practical Anti-phishing in Crypto
Learn to detect fake domains, use safe links, and verify signatures to protect your Binance and BNB Chain accounts.

Learn to detect fake domains, use safe links, and verify signatures to protect your Binance and BNB Chain accounts.
Phishing is the oldest trick online: a hook disguised as treasure. How do you avoid it?
TL;DR
- ✅ Bookmark official links.
- ⚠️ Never enter credentials from unsolicited messages.
- ✅ Enable Binance’s anti-phishing code.
- ✅ Confirm all permissions before signing.
Context
Phishing remains the most common crypto scam. It targets the weakest link: the user. Awareness is your best defense.
Prerequisites
- A verified Binance account.
- 2FA activated before trading.
- Official wallet extensions installed.
Step by step
- Access only via saved bookmarks in your browser.
- Enable anti-phishing code in Binance settings.
- Verify official emails: check sender and personalized code.
- Use block explorers to confirm addresses before sending.
- Sign only if you understand the contract. Reject if suspicious.
💡 Tip: use separate browsers for finance and leisure.
⚠️ Safety: never share your seed phrase.
Security checklist
- ⚠️ Save binance.com in your bookmarks.
- ⚠️ Avoid suspicious attachments.
- ⚠️ Enable anti-phishing code.
- ⚠️ Double-check spelling in domains.
- ⚠️ Never install wallets from random links.
Common mistakes and how to avoid them
- Clicking a random link on social media → stolen keys. Prevention: only bookmarks.
- Signing unknown contracts → drained wallet. Prevention: reject unclear requests.
- Ignoring anti-phishing code → falling for fake emails. Prevention: enable it.
Practical examples
- You get an email from “binanse.com”: it looks real, but the domain is fake.
- A dApp asks for “unlimited token access”: reject immediately.
Quick comparisons
- Official domain bookmark: safe.
- WhatsApp link: risky.
- Verified dApp signature: safer.
Editorial note
Phishing thrives on trust. Education and habit are stronger shields than any software.
Next step
Read Crypto security essentials.
Results / Conclusion
The secret isn’t fear—it’s recognizing the attacker’s disguise. Once you spot it, you’re safe.
Frequently asked questions
What is phishing in crypto?
It’s a scam to trick you into giving away your keys or funds through fake sites or apps.
How can I spot a fake domain?
Check the URL: small changes like 'binence.com' instead of 'binance.com' are red flags.
What are safe links?
Links from official, verified sources. Bookmark them for quick access.
Why do signature checks matter?
Some dApps allow signature requests that prove authenticity without risking funds.
What should I do if I get a suspicious email?
Never click. Always verify directly on the official Binance site.
How does Binance’s anti-phishing code help?
It shows your personalized text in official emails, so you know it’s authentic.
What if I already entered details on a fake site?
Change your password, revoke access, and contact support immediately.
Do hardware wallets help against phishing?
Yes, they require physical confirmation, reducing risks.
What warning signs should I watch when signing?
Unlimited permissions or contracts you don’t understand. If unsure, reject.
Is it safe to click links shared on social media?
Generally no. Only trust links from Binance’s official channels.
Review status
This migrated article remains scheduled for a source-by-source editorial review.