A message came in, from the sender "Binance".
Text: "Your login code is ***. Please, do not share this code. If this wasn't you, please call ********"
In the end, the phone number was provided.
Naturally, at that moment I was not trying to log into Binance
The first oddity: I have never received messages from Binance with a callback number.
Apparently, for scammers today, it is not difficult to send a message pretending to be any company.
I decided to call the specified number.
It is critically important for me to be sure of the security of my account.
But, a little trick: I called the specified number from another phone that is not connected to my account
When I called, our conversation started with an attempt to collect some information about me. My interlocutor insisted that to start the conversation with me he needed to identify me as a user in order to access my information.
I wanted to make sure I was speaking with a Binance representative before sharing any information about myself.
At some point, we were just taking turns repeating the same thing to each other.
Finally, he couldn't take it anymore and told me that someone was trying to access my account from Canada.
I asked him how he knew about this since we hadn't gone through the identification process yet.
He replied that he opened the information based on my phone number.
My question: from the number I am calling from?
The scammer's response: yes.
At this point, the conversation was over.
Perhaps one of the scammers will see my post and change their approach, so be extremely vigilant.
What thoughts do I have about this situation:
Company employees never apply emotional pressure during conversations. Scammers often demonstrate aggression and raise the intensity of the conversation. Yes, I have been attempted to be deceived many times)
Perhaps the scammers have a scheme built on a large user reach, so the people answering calls and sending messages are different individuals.
In this case, the scammer had no information about me other than my phone number. He didn't even know my name. Don't rush to share any information about yourself, even the most insignificant fact, during the conversation.
Maybe the sending of these messages was not targeted at Binance users.
Two tips to increase your security
1. Do not use your real name on social networks. Many scammers collect information from open sources. I have a name for the internet and my real name. Many times I have received calls supposedly from the bank, and they mentioned my fake name during the conversation, which was enough to realize that someone was trying to deceive me. Alternatively, if you want to use your real name and surname, use an incomplete version or one different from your documents.
2. In such situations, your number one task is to ensure that you are being helped by a company representative, not a scammer. You can intentionally provide false information about yourself during the conversation. If you are speaking with a representative, they already have all the information about you and can correct you. It is unlikely that a scammer has complete information about you. A few insignificant mistakes will help you understand who you are talking to.