The Bitfinex platform has many security features to ensure the safety of your funds. These features include the Bitfinex hot and cold wallets, DDoS protection (distributed denial-of-service), etc. To learn more, read Bitfinex Security Features.
As a Bitfinex user, you can use various security features on the Bitfinex platform to secure your account. Read more about these in our guide Getting Set Up: Securing Your Bitfinex Account.
Important: Securing your account will rely not only on the features available on the Bitfinex platform but also on your security settings. You can avoid becoming a victim of compromise by following a few best practices when securing your account.
How to secure a Bitfinex account
1. Password
Firstly, make sure to set a unique, strong password. Also, ensure that you use different passwords for different services.
2. Two-Factor Authentication (2FA)
Always use the Two-Factor Authentication (2FA), and do not store a copy of the 2FA secret in an insecure place such as cloud storage, an email account, a computer's hard disk drive or mobile phone storage.
To protect this data, either make a copy of the 2FA secret or print a copy of the QR code provided during the 2FA setup and store it in a safe place, then delete any digital copy after printing.
3. Whitelist your IP address
When the option is available, whitelist your IP address for the various services you frequently use. When an account has an IP address whitelisted, only logins from the whitelisted address will be permitted; this will help protect the safety of your accounts.
4. Ensure device/connection security
- Never use a rooted smartphone;
- Always connect to your account using only well-protected, trusted network connections and not free, public services;
- Disable WPS if you have that enabled on your wireless network. Use WPA2 for wireless security. Never use WEP for wireless security;
- Always use updated antivirus and malware protection to scan your computers and mobile devices routinely;
- Never open emails, attachments, or files of any kind from untrusted sources.
5. Store your private keys
We strongly advise you to store the private keys of (some of) the BTC addresses used to make deposits to your Bitfinex accounts. In some instances, we may ask you to sign a message using one of these addresses to establish that you are the legitimate account holder.
For more information, please view How to generate a Signed Message.
If you have any other questions, please feel free to reach out to Bitfinex Support. We will be happy to help!