Phishing emails are one of the most common scams targeting cryptocurrency users. Scammers send emails that look identical to official ones, tricking you into clicking links and entering your password. Binance's anti-phishing code feature helps you distinguish real emails from fakes — after setting it up, every official email from Binance will include your personally chosen secret phrase. Sign up on Binance and set up your anti-phishing code as soon as possible.
What Is an Anti-Phishing Code?
An anti-phishing code is a phrase or character combination that you define yourself. Once set up, every official email from Binance will display this phrase in a prominent position.
If you receive an email claiming to be from Binance but it doesn't contain your anti-phishing code, it's a phishing email — don't click any links in it.
Think of it like agreeing on a secret passphrase with your bank. When the bank calls you, they say the passphrase first so you know it's really them and not a scammer.
Steps to Set Up Your Anti-Phishing Code
On the App
- Open the Binance App > Tap the profile icon in the top left
- Go to "Security Center"
- Find the "Anti-Phishing Code" option > Tap to enter
- Tap "Create Anti-Phishing Code"
- Enter your desired anti-phishing code (4-20 characters)
- Complete security verification (enter your Google Authenticator or SMS code)
- Setup complete
On the Web
Log in to the Binance website > Click the profile icon in the top right > Security Center > Anti-Phishing Code > Create > Enter your code > Verify > Done.
What Should Your Anti-Phishing Code Be?
Guidelines
- Easy to remember: You need to recall this phrase to verify email authenticity
- Hard to guess: Don't use your name, birthday, or other easily guessed information
- Meaningful phrase: For example, an abbreviation of a favorite quote, or a phrase only you know
- 4-20 characters: Supports letters, numbers, and some special characters
Examples (Do not use these directly)
- MyBTC2024Safe
- Coffee#Morning
- Star7River3
- Happy$Trade
You can change your anti-phishing code anytime in the Security Center of the Binance App.
What It Looks Like After Setup
Once set up, official Binance emails (login notifications, withdrawal confirmations, security alerts, etc.) will display your anti-phishing code in the email body, typically in a prominent position at the top.
Legitimate Binance Email
The top of the email displays: "Anti-phishing code: [your code]"
The actual email content follows below.
Phishing Email
Your anti-phishing code won't appear, or incorrect content will be shown. This tells you the email is not trustworthy.
Common Phishing Email Red Flags
Even without an anti-phishing code, you can identify phishing emails by these characteristics:
Suspicious Sender Address
Official Binance emails come from specific domain names. Phishing emails typically use lookalike addresses, such as spelling "binance" as "binancc" or "b1nance."
Urgent, Fear-Inducing Language
"Your account will be permanently closed within 24 hours" or "Verify immediately or your assets will be frozen" — this panic-inducing tone is a classic phishing tactic.
Suspicious Links
Links in the email point to sites other than the official Binance website. Hover over links (without clicking) to see the actual URL.
Requests for Sensitive Information
Asking you to provide passwords, verification codes, or private keys. Binance will never request these through email.
Sign up on Binance and set up your anti-phishing code to effectively guard against these scams.
Managing Your Anti-Phishing Code
Change It Periodically
Consider changing your anti-phishing code every few months for added security. The path is the same as setup: Security Center > Anti-Phishing Code > Modify.
Forgot Your Anti-Phishing Code
If you forget your code, you can view the current setting in the Security Center or simply change it to a new one.
Does Frequent Changes Cause Issues?
After each change, new emails will use the updated anti-phishing code. Remember to update your mental note so you don't mistake legitimate emails for phishing.
Additional Security Measures
Enable Two-Factor Authentication
Use Google Authenticator plus SMS verification for double protection.
Set Up a Withdrawal Whitelist
Only allow withdrawals to addresses you trust.
Don't Click Email Links
Get into the habit of typing the Binance URL directly into your browser or using the app — never log in through links in emails.
Watch Out for Social Media Scams
Beyond email, scammers also impersonate Binance support on Telegram, WeChat groups, Twitter, and other social media platforms.
FAQ
How long does it take for the anti-phishing code to take effect?
It takes effect immediately. The very next email from Binance will include your anti-phishing code.
Does every Binance email show the anti-phishing code?
Primarily system-generated automated emails (login notifications, withdrawal confirmations, etc.). Some marketing emails may not include it.
Does the anti-phishing code completely prevent scams?
The anti-phishing code only helps you identify fake Binance emails — it can't prevent other types of scams. Staying vigilant and never sharing personal information is what matters most.
Do push notifications from the Binance App require an anti-phishing code?
App push notifications are sent directly to your phone without going through email, so they don't need anti-phishing code verification. App push notifications are inherently safe and trustworthy.
Safety Tips
- After setting your anti-phishing code, memorize it and check every email you receive
- Never enter your Binance password on any page linked from an email
- If you're unsure whether an email is genuine, open the Binance App directly to check notifications
- Forward suspicious emails to Binance's official address for verification
- Change your anti-phishing code periodically for enhanced security