- BNB Chain’s official X account was hacked, with phishing links posted to nearly 4M followers.
- Security experts linked the attack to the Inferno Drainer group, known for wallet-draining scams.
- Around $8K was stolen, but BNB Chain regained control and promised full reimbursement to victims.
BNB Chain’s official X account, followed by nearly 4 million people, was hijacked on Wednesday in a phishing attack. The hackers wasted no time, posting links that looked legit but were designed to trick users into connecting their wallets. Binance founder CZ jumped in quickly to warn the community, stressing that nobody should click or connect. “The hacker posted a bunch of links to phishing websites that ask for Wallet Connect. Do NOT connect your wallet,” he wrote.
Links Tied to Inferno Drainer Group
Security researchers soon flagged the incident as the work of the notorious Inferno Drainer crew. SlowMist’s chief security officer, known as 23pds, explained that the phishing sites used classic domain tricks—like swapping letters—to look authentic. Inferno Drainer, which has been active since 2022, sells phishing-as-a-service kits to affiliates, helping them set up fake crypto sites in minutes. The group has been behind multiple wallet-draining scams, and this latest attack fits the same mold.
Account Recovered, Losses Reported
BNB Chain’s team confirmed they’ve regained control of the account after takedown requests and platform reports. Still, around 10 phishing links went live before removal, leading to roughly $8,000 in losses across chains. The project pledged to fully reimburse affected users. While the financial hit was relatively small, the breach raises big questions about the security practices around official crypto accounts. As CZ reminded everyone: even if a link comes from a verified source, always double-check the domain before connecting your wallet.
