Recognize phishing
Phishing pages mimic login flows. Verify domain names, SSL indicators, and avoid logging in from links sent via unsolicited emails or social messages.
Warning: Support or staff will never ask for your password or recovery seed. Treat anyone requesting these as malicious.
Practical prevention
- Always use bookmarks or official app stores to access the platform.
- Use hardware-backed authentication for sensitive accounts.
- Keep your devices patched and avoid risky browser extensions.
If you suspect phishing
- Do not enter credentials; close the page immediately.
- Change passwords from a safe device and revoke sessions.
- Report the phishing attempt to the platform and to domain/hosting providers if possible.