Overview

• Attackers used the official handle to push fake airdrop posts that prompted WalletConnect interactions to drain user funds.
• BNB Chain’s access was regained quickly—reported at roughly 35 minutes—with malicious posts removed and the platform notified.
• CZ said the attacker netted about $13,000 in total and confirmed affected users will be compensated in full.
• Researchers highlighted a lookalike-domain tactic that swapped characters in the URL, including bnbchalns[.]com, to deceive users.
• Analysts noted the blockchain was not breached and market impact was limited, as BNB traded near the $1,000 level following the incident.