Bitmarket tips: phishing and 2FA

Nowadays, phishing is one of the most common threats that face Internet users. This is a method of deception involving the impersonation of an institution or person known to attack victims. Most often it takes the form of mapping an e-mail, a website or a social media profile. The careless and unconscious addressee of the thought that he has contact with a known brand and, for example, on a fake website, can provide his personal details, login or password to a real account. This problem most often meets the clients of banks, but unfortunately also – to an increasing extent – users of cryptocurrencies. In the latter case, phishing takes the form of becoming similar to the known cryptocurrency portfolios or emails from well-known companies.

The phishing campaign related to the OKPay portal, which is responsible for online payments, has been heard in 2015. His clients received e-mails with information about the large number of bitcoins being loaded into their portfolio. According to the email, the company asked users to download the btc wallet file on which the alleged coins were located. Of course, the file installed a virus on the computer that steals the hacker’s data.

Bearing in mind the above, always remember:

Do not click on the links, always enter the address manually
Check the page certificate❗
Contact us only through official channels, ie Facebook, email❗
Do not open suspicious attachments! ❗
After receiving a suspicious email, search for information on the search engine or on Facebook thematic groups if other users have received a similar message.
IMPORTANT!

Use multiple confirmation!
At BitMarket, from the very beginning of our stock exchange, we enable the inclusion of two-component protection, which we always recommend to activate. With enabled 2FA, it is not possible to change the account password before logging in to it (an unauthorized person who has access to the user’s e-mail and knowing the login of the BitMarket account will not be able to access it via the password reset option), logging in to the account even if you have knowledge of an account login and password by an unauthorized person. In the case of “taking over” access to the account of the logged-in user, there is no possibility to request a withdrawal.

 

Leave a Reply

Your email address will not be published.

Pin It on Pinterest