Hijacked: Binance Co-CEO Yi He's Account Used to Pump Fraudulent Token

WeChat Breach Hits Binance’s New Co-CEO: A Stark Warning for Crypto Leaders in a Web2 World

In a digital era where the lines between Web2 and Web3 blur, a simple messaging app has become the latest battleground for security. Yi He, the newly appointed co-CEO of cryptocurrency giant Binance, found herself at the center of a stark reminder: even the most prominent figures in crypto are vulnerable to the inherited risks of traditional platforms.

The breach unfolded not through a complex blockchain exploit, but through the hijacking of an old, abandoned WeChat account linked to a reclaimed mobile number.  WeChat was abandoned long ago, and the phone number was seized for use. It cannot be recovered at present,  Yi He initially stated in a translated post on X, highlighting a feeling of helplessness familiar to many. While Binance later confirmed a successful recovery in collaboration with WeChat’s security team, the brief window of compromise was all attackers needed.

Seizing the Moment, Cashing In

The speed of exploitation was telling. Almost immediately after the takeover, the compromised account was used to promote a token named Mubarakah. Blockchain analysts at Lookonchain tracked the maneuver, reporting that the attackers successfully pumped the token’s price and walked away with an estimated $55,000. This incident underscores a dangerous trend: a hijacked social account is not just a personal nuisance—it’s a powerful, ready-made launchpad for financial fraud targeting a vast, trusting audience.

A Disturbingly Low Barrier to Entry

This is not an isolated event. Just days earlier in November, Tron founder Justin Sun reported a similar takeover of his WeChat. In response to Yi He’s breach, SlowMist founder Yu Xuan resurfaced a critical analysis revealing just how alarmingly simple these attacks can be.

The method, as tested, is a chilling blend of technical access and social engineering. An attacker with leaked credentials can bypass security by merely contacting two of the account’s  frequent contacts —a category that can include casual group chat members or long-forgotten connections, not just close friends. In regions like China, where mobile numbers are recycled and reissued by carriers after a few months, the risk compounds. This system opens the door to credential stuffing, SIM-swap-style abuses, and targeted manipulation of recovery processes.

Yu Xuan’s advice cuts to the core: for high-profile individuals, especially those in crypto dealing with OTC trades or sensitive wallet discussions, digital hygiene is non-negotiable. Pruning unknown contacts, regularly rotating passwords, and heeding login alerts instantly are no longer best practices but essential protocols.

Echoes from the Top: I Will Not Promote That Coin

The ripple effect of such breaches is a climate of mistrust. Binance co-founder Changpeng Zhao quickly took to X to clarify that he, too, has long abandoned his WeChat account. His preemptive warning was clear:  I would not promote any memecoin contract addresses on this account.  This statement serves as both a shield and a signal to the community—a reminder to scrutinize every message, even those appearing from the most verified of sources.

This incident is part of a worrying pattern for the ecosystem. Mere months ago, the official X account of BNB Chain was compromised, leading to phishing links and stolen user funds. While reimbursement followed, the blow to institutional credibility is harder to repair.

The Unavoidable Conclusion

The takeover of Yi He’s WeChat is more than a personal security lapse; it is a metaphor for the crypto industry’s ongoing struggle. As leaders build the decentralized future, they remain tethered to the centralized, often fragile, infrastructure of the past. The message is unequivocal: in the high-stakes world of digital assets, your weakest security link may not be your cold wallet, but an old phone number on a messaging app you forgot you had.

The guardians of Web3 must now become the most vigilant users of Web2. Their legacy, and the safety of their communities, depends on it.

Start your crypto journey today — Buy Bitcoin and top altcoins now on BYDFi.

创建答案