How to Complete Security Initialization After Registering with a Phone Number
After completingBinanceregistration with a phone number, your account's security baseline is far from sufficient—by default, your account relies solely on the "phone number + password" defense. If your phone number is hijacked, your assets are at high risk.
The world's largest cryptocurrency exchange by trading volume,leading in security and liquidity.
New user benefit: Enjoy 20% off trading fees upon registration!
The core goal of security initialization is to add at least two independent layers of protection beyond phone number verification. Below are the three essential security settings, prioritized in order of importance.
First Priority: Enable Two-Factor Authentication (2FA)
This is the most critical step. It is recommended to useGoogle Authenticator, which is more secure than SMS verification and effectively defends against SIM swap attacks.
Steps:
Log in to the Binance app or website and navigate toSecurity CenterorAccount Security.
FindTwo-Factor AuthenticationorGoogle Authenticator, then clickBindorEnable.
Download the Google Authenticator app on your phone, scan the QR code provided by Binance, or manually enter the key to complete binding.
Critical step: After binding, the system generates a backup key (usually 16 characters).Write it down and store it offline—do not take a screenshot or save it on your phone. You will need this key to restore the authenticator when switching devices.
Second Priority: Set an Anti-Phishing Code
This is key to identifying genuine Binance emails. Once set, every email from Binance will include your custom code.
Steps:
In theSecurity Center, find theAnti-Phishing Codeoption.
Enter a string of characters you can easily remember (e.g., your nickname + birthday).
From now on, whenever you receive an email from Binance, check for this code in the body. If it's missing, it's a phishing email—delete it immediately.
Third Priority: Enable Withdrawal Whitelist (Address Management)
This prevents assets from being mass-transferred out if your account is compromised. When enabled, withdrawals can only go to pre-approved addresses. Adding a new address requires dual confirmation via email and 2FA, with a 24-hour cooldown period.
Steps:
In theSecurity Center, findAddress ManagementorWithdrawal Whitelist.
ClickAdd Addressand enter your frequently used wallet address (exchange address or cold wallet address).
Follow the prompts to complete dual confirmation via email and authenticator.
The world's largest cryptocurrency exchange by trading volume,leading in security and liquidity.
New user benefit: Enjoy 20% off trading fees upon registration!
Checklist
After completing the above settings, confirm the following:
Two-Factor Authentication (2FA): Google Authenticator is bound, and backup keys are stored offline.
Anti-Phishing Code: Set and recognizable in official Binance emails.
Withdrawal Whitelist: Commonly used addresses added, and the feature is enabled.
Risk Reminder: If 2FA is not yet enabled, your Binance security level is marked as "Low." It is strongly advised not to store significant assets in your account until this is resolved.
