{"id":31955,"date":"2020-11-18T14:09:12","date_gmt":"2020-11-18T12:09:12","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=31955"},"modified":"2025-08-28T06:18:04","modified_gmt":"2025-08-28T03:18:04","slug":"some-of-the-bitcoin-stolen-from-ledger-users-ends-up-on-binance","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/some-of-the-bitcoin-stolen-from-ledger-users-ends-up-on-binance\/","title":{"rendered":"Some of the Bitcoin stolen from Ledger users ends up on Binance"},"content":{"rendered":"

The organizers of the phishing attack against Ledger hardware-wallet users moved 51 BTC to the Binance exchange. The Telegram channel reported<\/a> this, via Goldfoundinshit TM.<\/p>\n

Funds from one of the hacker wallets arrived<\/a> at the trading platform directly, without using mixers.<\/p>\n

According to Goldfoundinshit TM, the attackers registered several accounts on Binance and sent no more than 2 BTC to each of them, in order not to exceed the verification threshold.<\/p>\n

\n

“The phishers used several iterations from the main wallet. They sent a small amount directly to the deposit address, and the main amount later,” wrote the Telegram channel.<\/p>\n<\/blockquote>\n

According to the Crypto AML Telegram bot, the original hacker wallet poses a 100% risk and contains stolen coins. The risk for the other attacker addresses is also above 50%.<\/p>\n

\\\"Part<\/p>\n

Source: Telegram channel Goldfoundinshit TM.<\/p>\n<\/div>\n

Update:<\/strong> Binance representatives told ForkLog that for AML and blockchain analytics the exchange uses professional products, not random Telegram bots.<\/p>\n

\n

“Bots, such as Whale Alert and similar services, often mislabel addresses as belonging to Binance,” they noted.<\/p>\n<\/blockquote>\n

Back in October, Ledger began<\/a> receiving phishing emails that urged users to install an emergency update. Through this, hackers gained access to the cryptocurrency.<\/p>\n

The victims linked<\/a> the attack to the July data breach of about a million users from a marketing database. However the wallet developers said they have not yet been able to confirm this hypothesis.<\/p>\n

In early November, the stolen funds moved. The hackers sent<\/a> 107 BTC to two Bitcoin wallets and transferred<\/a> 1.15 million XRP in five payments to the Bittrex exchange address.<\/p>\n

Subscribe to ForkLog news on Telegram: ForkLog Feed<\/a> \u2014 the full feed of news, ForkLog<\/a> \u2014 the most important news and polls.<\/p>\n","protected":false},"excerpt":{"rendered":"

Organisers of the phishing attack on Ledger hardware-wallet users moved 51 BTC to Binance. The Telegram channel Goldfoundinshit TM reported this.<\/p>\n","protected":false},"author":1,"featured_media":31956,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[744,1154,1640],"class_list":["post-31955","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-binance","tag-crimes","tag-ledger"],"aioseo_notices":[],"amp_enabled":true,"views":"20","promo_type":"1","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/31955","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=31955"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/31955\/revisions"}],"predecessor-version":[{"id":31957,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/31955\/revisions\/31957"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/31956"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=31955"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=31955"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=31955"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}