2FA is a mandatory security feature used by Bitbuy. We offer two options for 2FA, text message (default) and Google Authenticator. We recommend that users switch to Google Authenticator after they have a verified account. While text 2FA may be more convenient, it is more susceptible to hacking attempts via SIM swapping or other social engineering methods.
VOIP phone numbers, or Voice Over Internet Protocol, are internet based phone number services that can accept text messages. Although these are usually banned by cryptocurrency exchanges, you may be able to still use one if it’s not properly identified. Using one of these for 2FA is a very bad idea, as these numbers can often be accessed by multiple individuals.
A Bitbuy employee will never ask for your password or 2FA information. If they do, it’s possible that this individual is impersonating an employee in order to attempt to steal your account. If someone asks for your Bitbuy password, immediately report it to Bitbuy support for investigation.
Bitbuy staff will not provide account specific support over social media, chat platform, or direct email. The only channels where they will discuss account details will be the Zendesk Ticket system (emails to and from [email protected]) as well on our phone line (1-888-770-COIN). Do not trust emails or phone calls from other sources.
We all love free public WiFi, but these networks are definitely more succeptible to attacks. If you are on your phone, switch off WiFi when transacting crypto online for maximum security.
Bitbuy makes security a top priority and has taken extensive steps to ensure all coins are kept in the safest way possible. We have a 95% cold storage policy, meaning at all times, only 5% of our total coin holdings are available in our hot wallets. Even with these extensive practices in place, we encourage users to withdraw their digital currency to their own wallets if they plan to hold them for a long time. It is considered a best practice for any long term digital currency holder, and we encourage you to do so. We suggest buying a KeepKey or similar offline cold storage wallet for maximum security. If you do use a hot (web-based) wallet, make sure you research them extensively before signing up. We suggest Jaxx, or Blockchain for hot wallets.
There are plenty of investment services available that will accept cryptocurrency as a funding method. These services will promise high yield payouts, or unsustainable returns on investment. These are often nothing more than Ponzi schemes, and they capitalize on the fact that cryptocurrency payments are irreversible.
Other common scams are shipping scams, where a shipping company requests crypto payment in order to release a package, romance scams, where a bad actor pretends to be someone they are not in order to entice a cryptocurrency payment, or crypto mining related scams.
Hackers can attempt to clone the landing page of a site, that looks and feels exaclty like your exchange or service you are used to using. Check your browser address bar to make sure the https:// is visible, the URL matches (eg bitbuy.ca), and that the SSL certificate is present. If any of these are missing, do not fill out any information on this page as it could be a ‘cloned’ page used for a phishing attack.
Creating a complex and unique password can help protect your crypto assets on Bitbuy and elsewhere. Check out Bitbuy’s tips on creating the best password here. You should also consider making a unique password for each service. This is best practice, so if one set of your user credentials is compromised, a hacker can’t use the same login and password to access your accounts on other services.
If it sounds too good to be true, it probably is. A common cryptocurrency related scam is a giveaway, often run on a social network such as Twitter. The scam will say if you send them a small amount of crypto, they will send back a multiplied or larger amount as part of a giveaway.
For more information on keeping your account safe, check out the Bitbuy support centre.
Articles like this one in your inbox every week.