TLDR
- BNB Chain’s official X account was hacked on October 1, 2025, with attackers posting fake airdrop scams
- Former Binance CEO Changpeng Zhao warned users to avoid clicking any links from the compromised account
- Hackers promoted a fraudulent website claiming to offer early BSC rewards to BNB holders
- Security teams contacted X to suspend the account and requested takedown of phishing sites
- Experts suggest the breach may have resulted from a malicious third-party app connection
The official X account for BNB Chain fell victim to a security breach on October 1. Hackers gained control and began posting fraudulent links to steal cryptocurrency from unsuspecting users.
Changpeng Zhao, former Binance CEO, issued an immediate warning on Wednesday morning. He urged followers to avoid clicking any recent links from the BNB Chain account. The investigation started right away.
The compromised account posted messages about a fake HODLer airdrop event. Each post contained links to a fraudulent website impersonating “bnbchain.org.” The scam promised early rewards to users who participated within 24 hours.
Phishing Scheme Details
The fake posts invited users to vote on upcoming BSC rewards dates. They falsely claimed early participants would receive special cryptocurrency bonuses. This common phishing tactic targets users’ wallet credentials and digital assets.
The Chinese language BNB Chain account confirmed the English account had been hacked. They warned users to ignore all links while the team worked on recovering access. Questions emerged about potential compensation for victims.
Zhao provided updates throughout the recovery process. Security teams notified X platform officials and requested immediate account suspension. They also filed takedown requests for all associated phishing websites attempting to steal user funds.
By 6:00 AM UTC, the fraudulent airdrop posts were removed. However, the incident raised serious questions about social media security for verified cryptocurrency accounts. The BNB Chain account had gold verification status on X.
Expert Analysis on Security Breach
ChainGPT CEO Ilan Rakhmanov offered his perspective on how the hack occurred. He suggested a team member may have unknowingly granted posting permissions to a malicious third-party application. He advised users to review and disconnect suspicious connected apps.
Independent researcher Shanaka Anslem Perera categorized the incident as a “social-layer attack.” He explained that the blockchain itself remained secure, only the social media account was compromised. Perera recommended forcing logout of all authenticator apps.
The breach sparked criticism of X’s security protocols. Users questioned why a premium verified account with gold check mark status could be compromised so easily. Many asked about the value of paid verification if security remains weak.
BNB token price declined 0.95% in the 24 hours following the hack. The cryptocurrency traded near the $1,000 support level. Market participants monitored the situation for any further developments.
Recovery and Investigation Status
Security teams continue working to fully restore the account and prevent future breaches. Zhao emphasized the importance of checking website domains carefully, even when links appear from official verified accounts. Users should verify URLs before connecting wallets.
The incident serves as a reminder about phishing risks in the cryptocurrency space. Scammers frequently target official social media accounts to exploit user trust. Security experts recommend enabling two-factor authentication and reviewing third-party app permissions regularly.
Binance has not released a full post-mortem report detailing exactly how the breach occurred. The BNB Chain team continues investigating the incident while strengthening security measures for their social media accounts.
