A Chinese trader fell victim to a hacking scam, losing $1 million through a promotional Google Chrome plugin named Aggr.
This malicious plugin steals cookies from users, enabling hackers to bypass both passwords and two-factor authentication (2FA) to access the victim’s Binance account.
Binance Account Compromised Through Stolen Cookies
The trader, known by the username CryptoNakamao on the social media platform X, recounted the devastating event that transpired on May 24. CryptoNakamao noticed random trading activities in his Binance account when he checked the Bitcoin price through the Binance app. By the time he sought assistance, the hacker had already withdrawn all his funds.
According to the trader, the hackers exploited his browser cookie data, which they had obtained through the Aggr Chrome plugin. Initially installed to access data from prominent traders, the plugin was actually designed to steal users’ web browsing data and cookies. The stolen cookies allowed the hackers to hijack active user sessions without needing passwords or authentication, executing multiple leveraged trades to manipulate prices of low liquidity pairs for profit.
Despite the hacker being unable to withdraw funds directly due to 2FA, they leveraged the cookies and active login sessions to execute cross-trading. The trader detailed how the hacker purchased several tokens in the Tether trading pair with high liquidity and placed limit sell orders above the market price in Bitcoin, USD Coin, and other pairs with low liquidity.
By opening leveraged positions and buying excess amounts, the hacker successfully completed the cross-trading, which involves offsetting buy and sell orders for the same asset without recording the trade on the exchange.
CryptoNakamao Blames Binance for Inaction
CryptoNakamao accused Binance of failing to implement essential security measures despite unusually high trading activity. He claimed that even after timely complaints, the exchange did not take action to stop the fraudulent activities. His investigation revealed that Binance was aware of the fraudulent plugin and was already conducting an internal investigation. Despite this, Binance allegedly failed to inform traders or take preventive measures against the fraud.
The trader expressed frustration, stating, “Binance did nothing even though it knew of the theft and frequent cross-trading. Hackers manipulated accounts for over an hour, causing extremely abnormal transactions in multiple currency pairs without any risk control; Binance failed to freeze the funds of the obvious hacker’s single account on the platform on time.”
Binance Denies Security Breach
Yi He, co-founder of Binance, dismissed claims that the platform’s security breach led to the loss of $1 million from a single user account. On June 3, Yi He clarified, “This user’s account was breached because their own computer was hacked; they are a lost cause. After the hack, the hacker could not withdraw funds, so the hacker sold the victim’s coins, leading to trading losses.”
CryptoNakamao responded, alleging that his entire account balance was lost through “counter-trading” without the hacker obtaining his Binance account password or 2FA instructions. He explained that the hacker manipulated his account by holding his web cookies hostage, buying corresponding tokens in the USDT trading pair with high liquidity, and placing limit sell orders above the market price in BTC, USDC, and other pairs with low liquidity.
Yi He further warned users about the risks of logging into accounts with active cookie plugins to avoid the minor inconvenience of typing passwords for each login. She stated, “Binance is not able to compensate users when their own login devices are compromised.”
He, a former Chinese TV host, is currently one of the two women leading the world’s largest crypto exchanges, alongside Bitget’s CEO, Gracy Chen. In April, she remarked that her spouse, Binance’s co-founder and former CEO, Changpeng Zhao, received the “most optimal outcome” in his United States sentencing on money laundering charges.
- Crypto Price Update July 24: BTC Maintains $66K, ETH at $3.4K, XRP, TON, and ADA Rallies
- Bitcoin Falls to $65K as Mt. Gox Transfers $2.8 Billion BTC to External Wallet
- News of Marathon Digital’s $138 Million Fine for Breach of Non-Disclosure Agreement Triggers a Bearish 2.5% of Its MARA Stock
- Are $530M Bitcoin ETF Inflows a Blessing or Caution?
- Metaplanet Teams with Hoseki for Real-Time Bitcoin Holdings Verification
- Building Secure Blockchain Systems: An Exclusive Interview with ARPA and Bella Protocol CEO Felix Xu
- Building The “De-Facto Crypto Trading Terminal”: An Exclusive Interview with Aurox CEO Giorgi Khazaradze
- Building a New Global Financial System: An Exclusive Interview With Tyler Wallace, Analytics Head at TrustToken
- “Solana is the Promised Land for Blockchain” — An Exclusive Interview with Solend Founder Rooter
- El Salvador: Where The Bitcoin Revolution Begins With A Legal Tender