Key Takeaways:
- MEXC notifies users of SMS messages supposedly sent by the platform.
- MEXC confirms there is no in-house data leak.
- Users are urged not to trust messages that request account details or quick action.
- Security best practices are advised against likely fund loss.
A Rise in Crypto-Themed SMS Scams
Cryptocurrency exchanges are now a frequent victim of impersonation attacks. There has been an upsurge in phishing scams in the form of SMS messages that claim to be official notices from MEXC. The messages may claim that there is unusual activity on the account, urgent verification is needed, or withdrawal pending.
The purpose of these scams is to cause panic, prompt users to click on spoofed links, and convince them to reveal login credentials or one-time passwords. These scams are particularly dangerous in that they are targeting users on their phones directly, bypassing normal email spam filters.
How the Scam Works
The SMS scams are designed in such a manner to compel users to act immediately. Typical characteristics include:
- Notifications alerting of “unauthorized logins” or “suspicious activity.”
- Promises that user accounts will be frozen without instant verification.
- URLs that look like official MEXC links but redirect to imitation login pages.
- Phone numbers that claim to be MEXC customer support representatives.
After users engage with these numbers or links, attackers tend to request sensitive data such as passwords or two-factor authentication codes. Using these, they can steal crypto assets within minutes.
MEXC’s Response and Clarification
MEXC publicly spoke about the matter by advising users to be cautious and not to pay attention to any unusual SMS messages. The exchange reiterated that it does not initiate unsolicited SMS requests for passwords, login details, or verification actions through third-party links.
MEXC also made it clear that their in-house systems are safe, and there has been no leakage of user data from their end. The targeted phone numbers could have been received due to third-party leaks or malware infected on individual users.
Security Tips for Users
In order to prevent users from falling victim to these scams, MEXC has released a few security tips:
- Never open links that you get in an SMS unless you are absolutely certain about the source.
- Do not trust messages demanding urgency or threatening the suspension of an account.
- Never share personal information, passwords, or authentication codes through SMS or unsolicited calls.
- Use robust two-factor authentication from a secure app or hardware device.
- Bookmark and visit only the official website directly instead of using links found in messages.
- Enable withdrawal whitelisting to limit the vulnerability for unauthorized asset transfer.
If someone feels that they may have interacted with a phishing email, they are strongly advised to change their password immediately, reset 2FA settings, and reach out to official support.
Strengthening Defense Through Awareness
MEXC is already enhancing the educational process for users by releasing security updates, improving internal detection, and working with partners to identify and block phony numbers. It continues to urge users to report suspicious activity in an effort to build a stronger defense across the community.
The most effective protection starts with user awareness. Carefulness with all messages that need to be acted upon immediately — especially those that ask for sensitive information — is a necessary discipline in today’s threat landscape.
More News: MEXC vs. Bybit Comparison (2025): Fees, Features, and More
