Every day, people receive scam emails impersonating Binance — the content looks completely legitimate, and the links point to phishing websites. How can you tell real emails from fake ones at a glance? Binance offers a simple yet effective feature called the anti-phishing code. Once set up, every official email from Binance will include your unique marker, and any email without it is fake. Log in to Binance Official and you can set it up in just a few minutes. You can also do it through the Binance Official APP. Apple users can refer to the iOS Installation Guide for app installation.
What Is an Anti-Phishing Code
An anti-phishing code is a text string you set yourself (usually a combination of letters or numbers). Once configured, every official email Binance sends you will contain this text.
The logic is simple: scammers can imitate the appearance of Binance emails, but they don't know what anti-phishing code you've set, so their fake emails won't include it. When you receive an email claiming to be from Binance, just check whether your anti-phishing code is there to determine if it's real.
For example, if you set your anti-phishing code to "ABC123," every email Binance sends you will prominently display "ABC123." If you receive a "Binance" email that doesn't contain "ABC123," it's fake.
Steps to Set Up Your Anti-Phishing Code
Step 1: Go to Security Settings
- Log in to your Binance account
- Click the profile icon in the top right corner
- Select "Security"
- Find the "Anti-Phishing Code" option
- Click "Enable" or "Set Up"
Step 2: Create Your Anti-Phishing Code
Enter the anti-phishing code you'd like to use. Here are the requirements and recommendations:
- Usually 4-20 characters
- Can include letters and numbers
- Don't use something too simple: "1234" or "abcd" are too easy to guess
- Don't use personal information: such as your birthday or name
- Choose something memorable: you need to remember it to verify emails
- Make it somewhat unique: something like "Buy2Moon" or "Safe9Key"
Step 3: Complete Security Verification
When setting your anti-phishing code, you'll need to enter an email verification code and a Google Authenticator code (if enabled) to confirm the action.
Step 4: Confirm It's Active
After successfully setting it up, you can trigger a test email from Binance (such as a login alert) to verify that the email contains your anti-phishing code.
How to Use Your Anti-Phishing Code to Verify Emails
Once your anti-phishing code is set, follow these steps every time you receive an email claiming to be from Binance:
- Look for the anti-phishing code: Open the email and check the header or a prominent area for your code
- Code is present: It's most likely a legitimate email, but still don't click links directly — open your browser and navigate to Binance manually
- Code is missing: It's definitely a fake email. Delete it immediately and don't click any links
- Code doesn't match: If the displayed code differs from what you set, it's also a fake email
Where the Anti-Phishing Code Appears in Emails
It's typically found at the beginning or top area of the email body, in a line similar to "Your anti-phishing code: ABC123." The exact position may vary slightly between email templates, but it will always be in a visible location.
Limitations of the Anti-Phishing Code
While the anti-phishing code is very useful, it's not foolproof:
- Only applies to emails: The anti-phishing code only appears in emails sent by Binance. It doesn't show up in SMS, app push notifications, or other types of notifications.
- Can't prevent all attacks: Even if an email is genuine, if your email account itself has been hacked, the attacker can see both the real email and your anti-phishing code.
- Requires active checking: You need to actually look for the anti-phishing code each time you receive an email. If you don't check, it serves no purpose.
So the anti-phishing code is one component of a broader security framework. It can't replace other security measures (like Google Authenticator or withdrawal whitelist), but it works very well when used in combination with them.
Can I Change My Anti-Phishing Code
Yes, you can change it anytime. If you think someone else may have seen your current code (for example, someone looked at your email), or if you want to switch to something more memorable, you can update it in security settings.
The steps are the same as the initial setup: go to Security Settings > Anti-Phishing Code > Modify > enter a new code > complete verification. After the change, the new code takes effect immediately, and all subsequent emails will display the new code.
FAQ
Q: What happens if I don't set up an anti-phishing code?
A: Your account will still work normally, but you won't be able to use this method to distinguish real emails from fake ones. Given how prevalent phishing emails are, it's strongly recommended. This feature doesn't affect any of your normal operations — it simply adds an identification marker to emails.
Q: Could someone else find out my anti-phishing code?
A: Under normal circumstances, no. Your anti-phishing code is known only to you and the Binance system. Unless someone can see the Binance emails you receive (for example, if your email is compromised or someone looks at your screen), they won't know your code.
Q: I set an anti-phishing code but can't see it in legitimate emails. What should I do?
A: First, confirm the email was actually sent from an official Binance address (check the sender). If it is indeed from Binance but the code isn't visible, it could be a template update or display issue — contact Binance support to verify. Also check that your anti-phishing code is still enabled.