Binance launched Withdraw Protection on May 4, letting users freeze their account against on-chain withdrawals for up to seven days. A stricter lockdown mode disables early unlocking entirely. The feature exists because verified physical coercion attacks against crypto holders rose 75 per cent last year.
Binance launched a feature on May 4 designed to keep crypto holders alive when someone shows up at their door with a wrench. Withdraw Protection lets a user lock their own account against on-chain withdrawals for any period from one to seven days. During that window, no one can move funds out — not the user, not anyone holding the user's password, not anyone with the device unlocked and two-factor codes in front of them.
The product also has a stricter mode. Lockdown disables early unlocking entirely, meaning a user under physical threat cannot reverse the freeze even if their attacker forces them to try. The chosen interval runs to its end. The exchange's stated logic is that a kidnapper holding someone for a 24-hour ransom window will not also hold them for seven days, and that the friction created by the lock destroys the economic case for the attack itself.
The numbers behind the launch explain why a major exchange is now pricing in physical violence as part of its product roadmap. Verified physical coercion incidents against crypto holders rose 75 per cent in 2025, reaching 72 confirmed cases according to CertiK and Jameson Lopp's public repository, which has tracked these attacks since 2014. Lopp's data, cited in Binance's own announcement, lists 316 kidnap-and-ransom-style incidents over the eleven-year period — including 79 ransom-focused attacks in 2025 alone and at least 27 already documented in 2026, with the year barely a third over.
These are not abstract threats. Ledger co-founder David Balland was abducted from his home in central France in January 2025 and held until the GIGN tracked the kidnappers down; his wife was found hours later tied up in a van. Four months later in Paris, the pregnant daughter of Paymium co-founder Pierre Noizat narrowly escaped a kidnapping attempt by three masked men in a fake Chronopost van. Attackers in both cases had identified their targets through their on-chain activity and public profile, the same vector Ledger's CTO warned this April was being industrialised by AI. A wallet visible on-chain is, in effect, a public balance sheet. Once an attacker knows the target has the money, the only remaining question is how to extract it.
Withdraw Protection answers that with a delay rather than a cryptographic guarantee. The lock is an internal Binance policy applied at the platform level — it is not enforced by smart contracts, multisig, or any on-chain mechanism. If Binance's account-management systems were compromised by an insider or an external breach, the lock could in theory be lifted. The exchange has not detailed what controls protect the unlock pathway, and that is a real gap. A determined attacker who has already assembled the physical and digital surveillance to plan a wrench attack might also try to social-engineer customer support.
There is also a deliberately narrow exception: the lock does not block law enforcement orders. Binance has spent the past three years rebuilding its compliance posture after the $4.3 billion Department of Justice settlement, and the company will continue to honour valid subpoenas and asset-freeze orders even when a Withdraw Protection window is active. That is the right call, but it is also a reminder that the feature is a defence against private criminals, not a sovereign-grade vault.
The feature is voluntary and disabled by default. Users have to opt in, choose the lock duration, and confirm they understand the irreversibility of lockdown mode. The setup is similar in spirit to Coinbase Custody's withdrawal whitelist or Kraken's Master Key, but the time-lock structure is closer to what self-custodied users have built with smart-wallet timelocks on Safe or Argent — minus the ability to recover funds without a key.
Binance's competitors will have to follow. The exchange is the largest by spot volume; once it sets a baseline, mid-tier exchanges face customer-side pressure to match it. Coinbase, Kraken, OKX and Bybit do not currently offer an equivalent, although Kraken's existing Global Settings Lock does delay account changes. The wrench-attack data point that pushed Binance to ship will push them too.
The deeper issue is that on-chain transparency makes high-net-worth crypto holders structurally easier to target than the equivalent fiat wealth held inside a bank. A bank account balance is private. A wallet balance is not. Privacy tools — coin-mixing, privacy chains, account abstraction — exist, but each carries its own regulatory and operational drag. Withdraw Protection is a centralised exchange's answer to a problem that, for self-custody users, requires a different and harder set of trade-offs.
The threat model has shifted. For most of crypto's history the dominant security risk was protocol exploits and exchange hacks, losses measured by smart-contract bugs and hot wallet breaches. Those still happen. But the 2026 data shows physical attacks are now growing faster than digital ones, and the targets are increasingly retail holders rather than executives. Binance has put a lock on its side of that asymmetry. Whether the rest of the industry takes the data seriously enough to follow will become clear over the rest of the year.
