Security & login best practices
Strong password: Use a long unique password for financial services. Consider a reputable password manager to generate and store your credentials securely.
Two-factor authentication (2FA): Prefer authenticator apps (TOTP) or hardware U2F keys (e.g., YubiKey). SMS-based 2FA is better than none but less secure.
Phishing awareness: Never click login links from unsolicited emails. Manually type the domain or use a bookmark you created after verifying the official site.
Device hygiene: Keep OS, browser, and security software updated. Use a trusted device for withdrawals and large transfers.
Account recovery: Understand the exchange's recovery process and back up any recovery keys or recovery codes they provide in a secure offline manner.