You already know that security is priority #1 at Kraken. We’ve talked at length about the many things we do here to stay paranoid in productive ways. This three-part guide will help you to do the same. Unproductive paranoia would be putting all of your…
I couldn’t be more excited to lead security efforts at one of the largest cryptocurrency exchanges on Earth. Kraken is the cryptocurrency market leader in security and our number one priority, above anything else, has always been to protect our clients. We’re announcing some major…
A bug was recently discovered with Cloudflare, which Kraken and many other websites use for DoS protection and other services. Due to the nature of the bug, we recommend as a precaution that Kraken clients change their security credentials: Change your password Change your…
Heed this or perish. Let’s begin with the assumption that within 24 hours your usual mobile phone number will be hijacked by social engineers. They will use your number to gain access to every account you own that utilizes phone-based authentication and account recovery, like…
We have received many reports lately of clients falling victim to phishing sites appearing in the ads, above the organic search results, of all of the major search engines. Unfortunately, it seems to be easier to get an ad up than it is to have…
We have been alerted to multiple phishing attempts in the past 24 hours which appear to have been targeted at BitcoinTalk users. Anyone who received an email with the subject Mtgox.Claim assessment process should delete it and not click on the link it contains! This email…
The first thing to understand about two-factor authentication is that you need it. For email or financial accounts, where security is of the utmost importance, two-factor authentication is essential because it greatly reduces the chance that the account will be compromised. The second thing to…
The recently discovered “Heartbleed” OpenSSL vulnerability may have affected many HTTPS sites on the internet, including kraken.com. When exploited, this vulnerability can leak random information that may contain usernames, passwords, and API keys. Most of our servers were patched before the vulnerability was publicly announced,…
You must be logged in to post a comment.