Binance faces fresh controversy as leaked KYC images circulate on Telegram, but the exchange insists the data did not come from its systems.
Leading cryptocurrency exchange Binance is in trouble again. It was only a few weeks ago the exchange got hacked and lost over 40 million dollars, and now rumors have been circulating suggesting the KYC data of users of the exchange has been compromised. The timing could hardly be worse for a platform that has been working to reassure users about the safety of their funds and personal information.
I would like to add, by joining or spreading the link of the telegram group, you are helping malicious hackers (at least giving attention). What we should do as an industry is to fight them. Stay on the positive side. Report the group, then leave. ??? https://t.co/Cvxks2S69i
— CZ Binance (@cz_binance) August 7, 2019
A channel in the popular social media communication app Telegram has been posting KYC pictures, with customer selfies and other data, claiming it is from the data they are withholding from Binance. The images show individuals holding identification documents, the kind of verification material that exchanges require to comply with anti-money laundering regulations. The vigilant exchange took quick notice of this and later released a statement saying this is all false just to create some FUD. They added that they have also received threats and harassment demanding 300 bitcoin in exchange for withholding more photos. At current prices, that ransom demand totals roughly 3.3 million dollars, which suggests the perpetrators are serious about extracting value from the situation.
The statement released by the exchange also mentions that the team is investigating the issue, and has offered "up to 25 bitcoin" for any helpful information that is legally actionable to fight this. That bounty, worth approximately 275,000 dollars, signals how seriously Binance is taking the claims. Binance CEO Changpeng Zhao took to Twitter to urge the community not to amplify the leak by sharing or joining the Telegram group responsible for distributing the images. His position is straightforward: spreading the content only rewards the hackers with the attention they seek. "Please remember that protecting our users' privacy and keeping our systems secure, including the funds stored within, is our utmost priority. We have numerous measures in place to ensure the safe-keeping of our users' information, and we will continue to maintain the highest degree of transparency while serving our community," concludes the statement.
There are reasons to view the leak with skepticism. The images circulating on Telegram do not contain the digital watermarks that Binance embeds in all its KYC photographs, which is a detail the exchange has pointed to as evidence that the data originated elsewhere. It is possible the images came from a third-party provider or were fabricated altogether. Still, the damage to user confidence is real regardless of whether the breach is legitimate. When people see photos that look like genuine verification documents alongside claims of a hack, the instinct is to worry first and verify later.
Even though the legitimacy of this leak is yet to be confirmed, online discussion groups and crypto communities are filled with messages from concerned users, especially those who have submitted their KYC data to the exchange. Some are demanding proof that their information is safe. Others are questioning whether centralized exchanges should hold such sensitive data at all, given how frequently these platforms become targets. The broader industry conversation around decentralized identity solutions and self-sovereign verification has gained fresh urgency. If exchanges did not store troves of personal documents, the incentive to attack them for this kind of data would diminish considerably.
For Binance, this episode is another test of trust. The exchange recovered quickly from the May security breach by covering losses through its insurance fund and conducting a transparent review of what went wrong. But KYC data is different from stolen coins. Funds can be replaced. Personal identity information, once exposed, cannot be taken back. Users who submitted passports, driver licenses, and utility bills to verify their accounts now face the uncomfortable reality that this information could be circulating in corners of the internet they will never fully control. The exchange will need to do more than issue denials to keep that trust intact.
