🚨 Important: Do not transfer any funds into your account until security settings are complete. This is not optional—it is mandatory.

Why Is Security Setup So Important?

Your Binance account holds real assets. Unlike banks, cryptocurrency transfers are irreversible—once stolen, they are nearly impossible to recover.

Common ways accounts get compromised:

  • Password leaked on other platforms, leading to credential stuffing attacks
  • Clicking a phishing link and entering account credentials on a fake website
  • Phone stolen without 2FA protection

After enabling 2FA, even if your password is leaked, attackers cannot log in because they still need the dynamic verification code from your phone.

Step 1: Enable Google Authenticator (2FA)

2FA (Two-Factor Authentication) is the most important security measure. Google Authenticator is recommended.

Steps
  1. Download Google Authenticator on your phone (search on App Store / Google Play)
  2. Log in to Binance, go to "Account" → "Security" → "Google Authentication"
  3. Scan the QR code on the page with Google Authenticator
  4. Enter the 6-digit code displayed in the app to confirm binding
  5. Save the backup key (very important—needed if you change phones)
⚠️ You must save the backup key. It is recommended to take a screenshot and store it in multiple places (cloud drive, email, paper). If you lose your phone and don't have the backup key, you will lose access to your account.

Step 2: Set Up an Anti-Phishing Code

An anti-phishing code is a custom string you create that will appear in all official emails from Binance. If an email you receive does not contain this string, it is a phishing email.

Steps
  1. Go to "Account" → "Security" → "Anti-Phishing Code"
  2. Set a string of 4-20 characters (use a combination that is easy to remember but not common, e.g., MYBNB2026)
  3. After saving, all official emails from Binance will include this string
💡 How to use the anti-phishing code: When you receive any email claiming to be from Binance, first look for the anti-phishing code. If the email does not contain this string, do not click any links and delete it immediately.

Step 3: Bind Your Phone Number

If you registered with an email, it is recommended to also bind a phone number as an additional verification method.

Steps
  1. Go to "Account" → "Security" → "Phone Verification"
  2. Enter your phone number and receive the verification code
  3. Enter the verification code to complete binding

Security Setup Checklist

  • ✅ Google Authenticator is bound, backup key saved
  • ✅ Anti-phishing code is set, you remember this string
  • ✅ Phone number is bound
  • ✅ Login password is strong (8+ characters, includes uppercase, lowercase, and numbers)

After completing the above 4 items, your account security level meets the basic requirements, and you can start considering depositing funds.

Daily Security Habits

  • Check recent login activity after each login; change your password immediately if you notice anything unusual
  • Do not operate your account on public WiFi
  • Do not click any "Binance links" in private messages or emails; type the URL directly into your browser
  • Do not share your account password or 2FA code with anyone, including "customer service"