Getting started: sign in safely
This concise, independent walkthrough gives actionable steps to verify a login page, strengthen access, and reduce your exposure to phishing. It’s applicable to most exchanges — treat it as a safety checklist, not official support.
Verify the address
Always type the known URL yourself or use a previously saved bookmark. Suspicious redirects or slightly misspelled domains are common phishing tricks.
Use a password manager
Generate unique, long credentials and rely on the manager to fill them. If autofill fails, double‑check the domain before entering anything.
Prefer app/hardware 2FA
Authenticator apps (TOTP) or hardware keys (FIDO2) are more secure than SMS. Keep backup codes offline in a secure location.
Check TLS & certificate
Click the padlock icon to inspect certificate validity. Any browser warnings are a stop sign — do not proceed until fixed.
For routine account checks, use read‑only tools (where available) and avoid sharing credentials or seed phrases. Seed phrases should never be entered into websites or chat.