How to Handle Phishing Scams on OKX?
Phishing attacks in the cryptocurrency industry are more rampant than in other sectors for a simple reason: once assets are transferred out, they cannot be reversed, and the attack cost is low while the payoff is high. This article explains how to identify phishing, what to do if you encounter it, and how to fundamentally prevent it.
1. Common Phishing Methods
Method 1: Fake OKX Official Emails
You receive an email that appears to be from OKX, claiming your account has an anomaly, requires verification, or has a security risk, prompting you to click a link to log in and take action.
The link leads to a phishing website that looks identical to the OKX official website. Once you enter your account, password, and verification code, this information is directly intercepted by the attacker.
How to identify: Check the sender's domain. The real OKX email domain is @okx.com. Any other domain (such as @okx-security.com, @okx.support, etc.) is fake.
A leading global cryptocurrency platform,suitable for both beginners and experienced traders.
New user benefit: 20% off trading fees upon registration!!
Method 2: Fake OKX Customer Support
On platforms like Telegram, WeChat, and Twitter, someone impersonates official OKX customer support, proactively contacting you claiming there is an issue with your account or that you have a reward to claim, asking for your account information or verification code.
How to identify: Official OKX customer support only contacts you through the in-app customer service portal and will never proactively message you on third-party platforms.
Method 3: Search Engine Ad Phishing
When searching for "OKX login" on Baidu or Google, the first result might be an advertisement leading to a phishing website.
How to identify: Do not click links from search engines to log in to OKX. Bookmark the official website address okx.com in your browser and always access it from your bookmarks.
Method 4: Fake Apps
Downloading a fake OKX APP from unofficial channels. It looks exactly like the real app but records your login information.
How to identify: Only download the app from the official website or links provided on this site.
Method 5: Customer Support Asking for Verification Codes
Regardless of the channel, someone claims to be OKX customer support and asks for your SMS verification code, Google Authenticator code, or password.
How to identify: Official OKX customer support will never ask for any verification code or password. If this happens, it is 100% a scam.
2. Emergency Steps After Discovering a Phishing Attack
Time is critical. Immediately follow these steps in order after discovery:
Step 1: Freeze Your Account Immediately
OKX APP → Profile → Security Center → Freeze Account → Confirm Freeze.
Once frozen, no operations can be performed on the account, including by the attacker, temporarily protecting your assets.
Step 2: Change Your Password
If you can still log in, immediately change your login password. Choose a new, strong password that is not used on any other platform.
Step 3: Unbind and Rebind Google Authenticator
If the attacker has already obtained your authenticator, you need to unbind and rebind it. See detailed steps here: Google Authenticator Lost Handling →
Step 4: Contact OKX Customer Support
Contact OKX through the official in-app customer service portal (not third-party channels), explain that your account has been phished, and request assistance in checking for any abnormal operation records.
If assets have already been transferred out, provide evidence of the phishing (screenshots of the phishing email, login logs, etc.). OKX can assist with tracking, but the success rate of recovering on-chain transfers is low, so be mentally prepared.
Step 5: Check Other Accounts
If you use the same password on other platforms, change them immediately one by one. Phishing attackers often try the obtained credentials on other platforms (credential stuffing attacks).
3. Fundamental Anti-Phishing Measures
Measure 1: Set Up an Anti-Phishing Code
This is the most direct anti-phishing tool provided by OKX. Once set, all official emails sent by OKX will contain this code. If you receive an "OKX email" without this code, consider it phishing.
Setup path: APP → Profile → Security → Anti-Phishing Code → Set a code you can remember → Save.
Measure 2: Only Use Bookmarks to Access the Official Website
Add okx.com to your browser bookmarks. Always log in from your bookmarks and never access the site via search engines or email links.
Measure 3: Enable Google Authenticator
Even if your password is leaked, logging in is impossible without the Google Authenticator code. This is the single most effective measure to prevent account theft.
Measure 4: Be Skeptical of All "Proactive Contact"
Treat any "customer support," "official personnel," or "security alert" that contacts you proactively as suspicious by default. Do not click any links, do not provide any information, and verify through official channels yourself.
4. Frequently Asked Questions
Q: Can assets be recovered after a phishing attack? On-chain transfers are irreversible, so the success rate of asset recovery is very low. OKX can assist by providing on-chain tracking information, but actual recovery depends on law enforcement intervention, which takes a long time and is not guaranteed.
Q: What is the difference between a phishing website and the real official website? The domain name is the only reliable way to tell. The official OKX website is only okx.com. Any other domain, no matter how similar it looks, is fake. The page appearance can be perfectly copied, but the domain name cannot be forged.
Q: What if my SMS verification code is intercepted? Immediately follow the emergency steps: freeze your account and switch to using Google Authenticator instead of SMS verification. SMS verification codes are less secure than Google Authenticator.
Ready to start trading? Register for OKX through the link on this site to enjoy a 20% trading fee discount for the long term. Register for OKX Now →
