Recently, phishing scams have evolved, utilizing sender names that closely resemble legitimate sources, URLs that are difficult to distinguish from official sites, and meticulously crafted messages. To assist users in recognizing common phishing tactics, Bithumb has prepared campaign content for self-assessment.
The main phishing methods identified by Bithumb fall into three categories. The most common involves impersonating exchanges or financial institutions by sending messages claiming, "Overseas IP login attempt detected," along with fake links. Other tactics include phishing emails disguised as security checks that lead users to cloned pages identical to the real site to steal authentication information, and the use of fake websites appearing in search engine results to trick users into entering their information.
Exposure to such phishing attempts can result in the leakage of sensitive information, including account IDs, passwords, two-factor authentication codes (SMS, OTP), phone numbers, email addresses, names, birth dates, and financial information. Particularly concerning is the risk of secondary damage if the same password is used across multiple services, as this can lead to breaches beyond just the exchange account.
Since the implementation of the Virtual Asset User Protection Act in 2024, Bithumb has enhanced its internal control and protection systems through various committees, including the Internal Control Committee, Market Surveillance Committee, and Anti-Money Laundering Risk Management Committee, in collaboration with external experts. Earlier this year, it also launched an "Information Security Advisory Committee" with external experts.
A Bithumb representative stated, "Phishing scams have become so sophisticated that they are difficult to distinguish from the real thing. A simple habit of double-checking sender addresses and official URLs is the most effective preventive measure. Bithumb will continue to strengthen security guidance and protective measures to safeguard users' assets and personal information."
* This article has been translated by AI.
Copyright ⓒ Aju Press All rights reserved.