Hackers Reportedly Leak 1.5 Million Binance Account Login Data
BeInCrypto
A threat actor allegedly leaked a database containing login data for 1.5 million Binance users via a scraping attack.Summary
Cybersecurity platform VECERT reported that a threat actor named PexRat is selling a database containing personal information for approximately 1.5 million Binance users. The leaked data reportedly includes names, emails, phone numbers, KYC status, last-login IP addresses, and 2FA statuses, posing risks of SIM-swap and phishing attacks. Crucially, VECERT analysis suggests the breach was not a direct server hack but a sophisticated credential stuffing and scraping operation where the attacker bypassed or abused security mechanisms like Captcha on the login interface or an API. This incident follows previous reports of exposed Binance-linked credentials and serves as a major test for the exchange's data security practices.
(Source:BeInCrypto)