Hackers targeted Russians after Binance restrictions

Russian customers of the cryptocurrency exchange Binance began receiving mass phishing emails offering to download a special program allegedly enabling them to bypass recently introduced P2P trading restrictions. Security specialists from the cybersecurity firm F.A.C.C.T told Ferra about it.

\n\n

Users are directed to a file-sharing site via a link to download the app, where a ZIP archive containing malware is hosted.

\n\n

Subsequently, the program intercepts logins and passwords from crypto wallets and other services. It can also become a launching point for broader and more sophisticated cyberattacks.

\n\n

Users were advised to always verify the sender of all incoming emails and not click on unfamiliar links.

\n\n

In late August Binance, Bybit and OKX removed from their P2P platforms banks under U.S. sanctions Sberbank, Tinkoff and Alfa-Bank. The first also запретила россиянам обменные операции with any fiat currencies other than the ruble.

\n\n

Later, KuCoin and OKX introduced additional restrictions for Russians.