On October 1, 2025, the official BNB Chain X account was compromised in a phishing scheme, where hackers posted approximately 10 malicious links promoting a fake BNB airdrop. These links tricked users into interacting with fraudulent contracts, leading to initial estimated damages of $8,000. Further investigation revealed total losses of around $13,000 affecting 13 users, with the largest individual loss at $6,586 and the smallest at $1.13.
The hacker also deployed a phishing contract, injecting $17,800 into a meme token under their control before executing a rug-pull by dumping 64% of the supply for a profit of $22,000. Combined with the phishing losses, the attacker's total gains reached roughly $13,000. The BNB Chain security team regained control of the account within hours and pledged full compensation.
Thirty days later, on October 31, 2025, BNB Chain confirmed that all affected users have been fully reimbursed in USDT, with transfers documented on Etherscan for transparency. The root cause was identified as a phishing link, which has since been contained and removed. Additional security measures have been implemented to prevent future breaches.
Binance founder Changpeng Zhao (CZ) endorsed the recovery, stating, "Hacker got $13K. Security teams are still tracking, with a possible linked KYC. He could have made more by building," and praised the community's resilience. In a notable turn, the BNB community rallied to pump the hacker's meme token, "4", driving its value by 500% to over $6 million, effectively turning the incident into a missed opportunity for the attacker. Throughout the episode, the BNB token remained stable, holding above $1,020, though it later saw a slight decline to around $1,090.
MIM
LTC
BTC
ETH
ZK