Binance Launches Withdrawal Lock to Deter Wrench Attacks
Binance introduced Withdraw Protection, letting users lock on-chain withdrawals for 1-7 days to deter physical coercion. An unoverridable lockdown mode adds defense. Chief Security Officer Jimmy Su cited rising coercion incidents, up 75% in 2025, and warned against API key scams.
Quick Take
Users can lock on-chain withdrawals for 1–7 days, with a stricter lockdown mode.
Rising coercion cases: 75% increase in verified incidents, 250% jump in assaults.
Chief Security Officer Jimmy Su warns about risky API key permissions for trading bots.
Withdraw Protection is an internal policy, not overridable by customer service.
Market Impact Analysis
NeutralBinance's new security feature improves user protection but has no direct impact on crypto asset prices or market liquidity.
Speculation Analysis
Key Takeaways
- Binance users can now lock on-chain withdrawals for 1 to 7 days using a self-service feature that customer support cannot override.
- Verified physical coercion attacks against crypto holders surged 75% in 2025, with assault-related incidents jumping 250%.
- A stricter “lockdown” mode disables early unlocking entirely, providing a critical time buffer during a wrench attack.
- Chief Security Officer Jimmy Su warns that API key permissions remain a separate risk vector; users should audit trading bot access.
What Happened
Binance rolled out Withdraw Protection on Monday, a user-activated feature that temporarily halts on-chain withdrawals for a period of one to seven days. The tool includes a “lockdown” mode that prevents early deactivation, even by the user. According to Binance’s Chief Security Officer Jimmy Su, customer service agents cannot override the lock under any internal policy, giving users a guaranteed time buffer. The exchange designed the feature after observing patterns of coerced or risky withdrawals, including holders traveling to high-risk regions where physical targeting of crypto owners has intensified. The lock is meant to deter so-called wrench attacks, where attackers physically force victims to move funds.
The Numbers
Data from CertiK and researcher Jameson Lopp paints a grim picture: verified physical coercion incidents against crypto holders rose 75% in 2025, reaching 72 confirmed cases. Assault-related incidents alone spiked 250%. These attacks exploit the irreversible nature of blockchain transactions—once funds are sent, recovery is nearly impossible. By locking withdrawals for up to a week, the feature disrupts an attacker’s ability to instantly transfer assets. Unlike traditional fiat transactions that can be reversed, on-chain crypto moves are final, making time locks a critical defense layer. The feature doesn’t stop legal enforcement orders, but for extortion scenarios, it creates a critical delay.
Why It Happened
The surge in physical coercion has forced exchanges to rethink account security. Traditional measures like 2FA and cold storage do nothing when a victim is physically threatened. “Unlike a fiat scenario where funds are withdrawn to a checking or bank account and there are ways to reverse the transaction, you can’t do that with onchain crypto,” Su told CoinDesk. Binance recognized that users facing extortion need a tool that puts time on their side, especially when traveling. Additionally, the exchange warns about API key risks—trading bot permissions can be exploited if credentials are leaked or phished.
Broader Impact
While withdrawal delays aren’t new (Coinbase Vaults and Kraken’s Global Settings Lock exist), Binance’s explicit anti-coercion framing marks a shift toward user-controlled defense-in-depth. However, the lock is a policy mechanism, not a cryptographic one, so it depends on Binance’s consistent enforcement. The exchange says it is developing context-aware authentication, hinting at more adaptive security layers. For the industry, the feature sets a precedent: exchanges can empower users to protect themselves against physical attacks without compromising accessibility.
What to Watch Next
- Adoption rates: Whether Binance users actively enable the lock, especially before travel, will indicate demand for such tools.
- Feature evolution: Binance's context-aware authentication system could further reduce coercion risks if it detects anomalous withdrawal patterns.
- Industry response: Other major exchanges may follow with similar opt-in delays; regulatory scrutiny on user protection could accelerate adoption.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
