![]() This type of attack is a threat to all accounts using SMS-based 2-step verification and any account that can be recovered using phone-based authentication. Fraudsters are able to do this through a variety of means, including identity theft and socially engineering mobile carrier customer support representatives. Lock Down Your Mobile AccountĪ SIM-swap or phone port attack occurs when an attacker has their target’s phone number transferred to a mobile device under the attacker’s control. You should also enable 2-step verification on your personal email account as well.Īs an additional security precaution, you should conduct a periodic security review of your email account and settings as well:Ĭheck your email account for unusual rules, filters, or forwarding addresses.Ĭheck your email account settings for authorized devices you do not recognize.Ĭheck for unauthorized recovery emails or phone numbers added to the account.įor those who feel like they may be at risk of targeted account takeover attempts, check out Google’s Advanced Protection Program. If so, we recommend changing any passwords associated with that email address. Please make sure it is secure!įor starters, visit to see whether or not your email address has ever been compromised in a third-party data breach. We use your email to confirm new devices, send you important alerts about your account, and to communicate with you if you need support. Your email is one of the most important connections between you and your Coinbase account. ![]() You can enable the passcode for both accessing the app and sending funds with the app. If you are using the Coinbase mobile app to access your Coinbase account, we highly recommend enabling a security passcode in the app’s security settings. If you don’t own a smartphone and are restricted to receiving your 2-step verification codes via a text message, you should follow the steps in the section “Lock Down Your Mobile Account” to reduce the likelihood that you will suffer a SIM-swap or phone port attack. This feature can also be enabled in your account’s security settings. To add an extra layer of security to your account, you should also consider enabling 2-step verification for all sends of cryptocurrency. If you need help enabling these features, please review this support article outlining the necessary steps. Security keys and TOTP can both be enabled in your account’s security settings. By using TOTP, you are drastically reducing your chances of your account being compromised. If you’re not ready to invest in a security key, or just don’t want to use one, the next best option is Time-based One Time Password (TOTP) with a mobile authenticator app such as Duo or Google Authenticator. If you do not currently own a security key, Yubico is a popular choice. You can read more about why we consider security keys as the gold standard of account security here. We strongly recommend using a security key to protect all of your online accounts including Coinbase, Gmail, Facebook, Dropbox, Instagram, Twitter, and YouTube. Utilize the Strongest Form of 2-Step Verification Coinbase employees will NEVER ask for your password. Important Reminder: Never disclose your password to anyone. However, be careful and do not choose a phrase from a book or a movie as hackers have access to sophisticated databases of such quotes.įor more password related information or to see how strong your current password is, see our Password FAQ. If you don't want to use a password manager, use a passphrase (a sentence or group of four or more words) for your account. We also recommend using a password manager like LastPass, 1Password, or Dashlane to easily generate and securely store unique passwords for all of your online accounts. Never use the same password twice across your online accounts! To make it easy on you, here is the password reset link so you can strengthen your password now. Use a password that is long, random, and unique to your Coinbase account. Here are some actionable steps that you can take to help safeguard your investment and keep your account safe from unauthorized access. Coinbase takes extensive security measures to ensure your account and cryptocurrency investment remains as safe as possible, but ultimately, security is a shared responsibility.
0 Comments
Leave a Reply. |