This is a vital security feature. Even if anyone gets their hands on your password, they simply will not be able to take advantage of it. We strongly recommend that you enable 2FA when you register at HitBTC because your security is our primary concern.


How does Two-factor authentication (2FA) increase account security?


Two-factor authentication (2FA) boosts account security by requiring two different methods/factors to verify users' identity. These factors can include something that, hopefully, only you can know, such as your username and password, and something that only you have access to, such as an app on your smartphone that approves an authentication request.


2FA provides protection against social engineering, phishing, and password brute-force attacks, and ensures that your logins are secured against attackers trying to take advantage of weak or compromised credentials.


How to secure your account using 2FA


It is extremely important to set up a 2-factor authentication (also known as 2FA) on any website that holds your private information or your funds. Here are the steps for how to complete this process on HitBTC:

  1.  At the top right corner of HitBTC main page click the “Settings” icon and open the “Security” tab.
  2. Download the application that works well with your device. We recommend you choose one of several excellent available 2FA applications, namely:
     - Authy (recommended) on https://authy.com/
    - FreeOTP
     - Google Authenticator


Google Authenticator Pros/Cons 


Google Authenticator is a code generation app. It generates random codes used to verify your identity.


ProsCons


  • It can be used even when outside cellular reception or internet access.

  • Requires a smartphone or other similar device;
  • Smartphone battery can run out;
  • If the smartphone is lost or factory-reset, or if authenticator is accidentally deleted, the account access could be lost and its recovery would be difficult.


How to set up 2-Factor Authentication with Google Authentication

  • Step 1 - Download App
  • Step 2 - Scan QR Code
  • Step 3 - Backup the code
  • Step 4 - Enable Google Authenticator




We recommend that you print out or write down your backup code and keep it in a safe, secure place. If your device is broken, factory-reset, stolen or lost, this may be the only way to gain access to your account without requesting assistance from HitBTC support team.


Enter the app-generated code and click “Confirm.”


Check the email address associated with your HitBTC account: there should be an email containing your confirmation link. The link expires in 10 minutes, so please make sure to act quickly.


How to set up 2-Factor Authentication with Authy 


Please download and install Authy, set up your new account and log in. To confirm the account you will have to enter your current phone number.

      


Press the three dots in the top right corner of the screen to open your “Settings” page.


In the “Account” tab you can enter your email address and enable backups that will allow you to recover the codes if you lose access to your current device.


Return to the main screen and tap +; you will be prompted to scan a QR code or enter the key manually (both can be found on your Security page).



We recommend that you print out or write down your backup code and keep it in a safe, secure place. If your device is broken, factory-reset, stolen or lost, this may be the only way to gain access to your account without requesting assistance from HitBTC support team.


Enter the app-generated code and click “Confirm.”


Check the email address associated with your HitBTC account: there should be an email containing your confirmation link. The link expires in 10 minutes, so please make sure to act quickly.


If you lost your device, you can contact us using this form.