When installing an app on iOS, if an "Untrusted Enterprise Developer" prompt appears asking you to trust it via "Settings → General → VPN & Device Management," it is 99% a phishing attempt. The official Binance never distributes apps via enterprise certificates. This article explains the mechanics and emergency response. Download links: Binance official website, mobile Binance official APP. If you haven't installed the iOS app, see the iOS installation guide.
1. Three Ways iOS Apps are Distributed
| Method | Is it Official? | Typical Scenario |
|---|---|---|
| App Store | Yes | Official Binance distribution |
| TestFlight | Limited Official | Official Beta (Rare) |
| Enterprise Certificate / MDM Profile | Unofficial | Phishing / Fake |
Binance has never distributed its app to regular users via the third method. Any instructions to "install the enterprise version of Binance" are scams.
2. Why Enterprise Certificate Distribution is Dangerous
Enterprise certificates are originally intended for distributing internal corporate apps, bypassing App Store reviews. Once you install a "Binance" with an enterprise profile:
- The app has not been reviewed by Apple and can request arbitrary permissions.
- The profile itself might be MDM (Mobile Device Management), allowing the attacker to remotely take over your device.
- The attacker can read your contacts, location, clipboard, and push notifications (including verification codes).
- Even if you delete the app, the profile might still be active.
- They can remotely wipe your device data.
3. Emergency Response for Accidental Installation
If you have already installed a suspicious "Binance" and trusted the profile:
Step 1: Disconnect from the Network
Turn on Airplane Mode immediately to cut off all network connections.
Step 2: Delete the Profile
Go to Settings → General → VPN & Device Management → Find all unfamiliar profiles → Delete them. Ensure every single one is removed.
Step 3: Delete the App
Return to the home screen, long-press the icon → Delete App.
Step 4: Check Apple ID Security
Switch to appleid.apple.com on another device:
- Change your password
- Check the "Devices" list and remove any suspicious devices
- Review your login activity
Step 5: Check Your Binance Account
If you entered your Binance account password / 2FA into the fake app:
- Log in to binance.com from a clean device
- Change your password
- Reset your 2FA (delete the old binding and set up a new one)
- Delete all API keys
- Clear your withdrawal address whitelist
- Force logout from all devices
Step 6: Wipe and Reinstall
The safest route is to wipe the device and restore it from an iCloud backup (the backup must be from a point in time before the attack). If you are unsure whether the backup is compromised, do a complete reset and set it up as a new device.
4. How to Avoid Falling for This Next Time
1. Always Install Binance from the App Store
After switching your Apple ID region, searching for Binance (Developer: Binance Holdings Limited) in the App Store guarantees the authentic version. Anything installed from other sources cannot be trusted.
2. Ignore "Install Profile" Inducements
Go to Settings → General → VPN & Device Management. If the list is empty, that's a good thing. Always delete any unfamiliar entries before asking questions.
3. Do Not Click Unknown SMS Links
Many enterprise certificate scams send SMS messages saying "Binance official notice, please click to download the new version"—do not click these messages.
4. Educate Your Family
Family members, especially the elderly, are easily tricked into installing enterprise versions by "Binance official customer service guidance." Inform them in advance never to install "profiles."
5. Difference Between TestFlight and Enterprise Certificates
| Feature | TestFlight | Enterprise Certificate |
|---|---|---|
| Apple Review | Yes (Light review) | None |
| User Visibility | Via TestFlight app | Profile + Home screen icon |
| Danger Level | Medium | Extremely High |
| Official Status | Check Developer + Announcements | Always unofficial |
TestFlight apps have at least passed Apple's initial review, whereas enterprise certificates undergo no review at all. Binance's Beta versions use TestFlight, not enterprise certificates—if someone claims it's a "Binance enterprise version download," it is definitely fake.
FAQ
Q1: Is revoking trust useful after trusting a profile? "Revoking trust" will not bring back device data that has already been acquired. Change passwords where necessary, and reset the device if needed.
Q2: Will Apple proactively revoke malicious enterprise certificates? Yes, Apple periodically revokes reported enterprise certificates. However, there is a time lag between discovery and revocation, so it cannot be relied upon.
Q3: Can the app still be used after the enterprise certificate expires? No. But attackers will resign it and send you a new link to "trust again." Every click gives the attacker another chance.
Q4: Can I trust the enterprise version installed by my "Binance intern" friend? No. Binance does not have such internal distribution mechanisms for external use. Even if they are a real friend, they were deceived themselves.