We do our best to protect all SFOR.TRADE accounts, but we also want that our customers be vigilant and take care of their own account security themselves.

It is important that you always ensure the security of not only your password, but also the email account associated with your SFOR.TRADE exchange account and any device used to access your exchange account. Remember that you are responsible for the safety of your data. If you have provided this information to a malicious site, they will be able to access your SFOR.TRADE exchange account.

If you lose access to your account, we will do our best to help you recover access, but we cannot guarantee a resolution time or our ability to do so. As user accounts contain an entirely different amount of information about account holders, our ability to verify your account ownership is limited, and the recovery process may take several months or may not be resolved at all.

Please always follow the instructions below to ensure that your account is as safe as possible and can be recovered if necessary.


Use only official resources of the SFOR.TRADE exchange:

Make sure that you get information about SFOR.TRADE only from the primary source: on the exchange's website in the "News" section and through our official channels in social networks: Telegram, Twitter and Facebook.

The official website address is only one "https://www.sfor.trade", please check the correctness of the address each time you visit the exchange's website to avoid phishing sites.

All official mailings are sent to users exclusively from the official domain "@sfor.trade".


Use complex and unique passwords

We strongly recommend you to use secure and unique password on any computer or mobile device from which you are logging in to SFOR.TRADE exchange website. Use a "complicated" password from your SFOR.TRADE exchange account, it must consist of numbers, capital and small Latin letters, as well as special symbols. It is recommended to use the password of 20 symbols or more.

Password to your account at SFOR.TRADE exchange must not coincide with your password at any other resources. This greatly increases the probability of your account being compromised, especially if your "default" password is used in conjunction with your "default" email account. Hackers primarily check all financial services, including cryptocurrency exchanges, for accounts with known emails and passwords leaked from other sources.

Password from the mailbox used to enter the SFOR.TRADE exchange and password from the account at SFOR.TRADE must not coincide either.


Use two-factor authentication (2FA)

We strongly recommend that you enable two-factor authentication. It gives you more protection from possible intruders trying to enter your account at SFOR.TRADE than just using your password.

In situations where your login information has been compromised by a third-party data breach, two-factor authentication can help prevent unwanted access to your account. Since when 2FA is enabled, having a login and password is not enough to log in to your SFOR.TRADE exchange account and perform any actions.

Be sure to back up your 16-digit key, because if you change or lose access to the device you use for two-factor authentication, your 16-digit key can prevent you from losing access to your account.

Please print or keep it in hard copy and delete all digital copies of it to keep your key safe. We do not recommend that you share this key with anyone and will never ask you to provide your 16-digit backup key via customer support or email.


Use a dedicated email for the SFOR.TRADE exchange

Create a separate new email for SFOR.TRADE exchange, do not use it on any other sites or services and keep it secret from others.

Ideally:

  • Create a separate new email account on a well-secured service such as Protonmail.com;
  • Be sure to use a unique and complex password for it;
  • Enable two-factor authorization for this email with any two-factor authentication application.


Control access to your device

Please always make sure your email accounts and devices are secure and protected. Shared devices, such as Internet cafes, public computers, public Wi-Fi networks and the like, are at high risk. If someone has access to your cell phone or other devices, they can log into your account and make unauthorized transactions!


Don't follow suspicious links

Be vigilant and don't click on suspicious links. Hackers have learned to use them to gain access to your entire operating system (even if you have a Mac). Always check the sender and don't be lazy to examine the link carefully, or better yet, send it to special online services for checking.

Take attention if the link:

  • Does not pull up previews in messengers;
  • Uses a link shortening service like "bit.ly";
  • Copies the original name of a popular site with character rearrangement.

If any of the items is the same, then most likely the link is phishing and it's better not to open it.


Do not trust begging "representatives" of the SFOR.TRADE exchange

One of the favorite ways of scammers to get your access to the account of any exchange, is to introduce themselves as a "representative" of the administration of the exchange or its support service. That's why you have to remember that if so called "representatives" of SFOR.TRADE exchange are the first to contact you and ask for your account access data or any similar information, in 99.9% of cases they are scammers.

Remember:

  • DO NOT call any phone number to anyone who introduces himself as an employee of SFOR.TRADE;
  • We will never ask you to send your personal information to participate in contests or promotions;
  • DO NOT send money to anyone who pretends to be a member of SFOR.TRADE team (we do not send letters with appeals to donate or transfer funds)!


Watch the safety of your API Keys

API keys can provide full access to your account without the need to enter the SFOR.TRADE exchange site or go through two-factor authorization. That's why it's important that you connect API for your account only when you really intend to use it. And that you disable every API key as soon as you stop using it.

You should use a unique API key for every bot, third-party service, or application. Always delete API keys that you will no longer use. When you create an API key, it's best to minimize its permissions to the level you need.

Only allow API access to third-party sites that you trust. SFOR.TRADE is not affiliated with any third-party providers. If you enter API keys and their secret keys into an unofficial app or website, you are sharing your account data with a potentially malicious party. This could result in the loss of your assets.


Keep a history of your account

It is recommended that you keep a detailed audit of your account history, noting key events such as account creation, deposits, trades, API key creation, withdrawals and any account updates or changes. At a minimum, if your account will be hacked, it may help you to notice suspicious activity in your account in time and report it to our support service mailbox (support@sfor.trade).

Accurate account history provided to our Support Team can help expedite resolution of issues. That said, make sure your account history records are saved in a safe place, perhaps on a device you don't use to access SFOR.TRADE, or recorded offline in a place that won't be easily lost.


Always log out of your account at the end of a session

We all know how easy it is to leave a tab or application running in the background to make it easier to access that account again. However, if you don't log out or close an active session, your SFOR.TRADE account is at risk of session theft. This could allow an attacker to compromise your account and impersonate you.

The best way to improve security against such attacks is to log out of your account every time you have finished using it, and to destroy active sessions on other devices that are not currently being used to access your account.