Mastering 8 Security Measures to Significantly Enhance Account Security
1.Register Astral Account with a Separate Email Your email is a crucial credential for your account. Register your Astral account with an email that hasn't been used on other websites. This can help mitigate attacks resulting from email information leaks. Additionally, ensure proper management of your registered email and regularly review its security settings.
2.Set a High-Security Level Password and Change Regularly Set a strong and complex password specifically for your Astral account and change it regularly. Safeguard your password and never disclose it to anyone.
3.Enable Two-Factor Authentication (2FA) Two-factor authentication, also known as 2FA, adds an extra layer of security to your account. It is used for logging in, withdrawing digital assets, changing passwords, adding API keys, and adjusting security settings. In addition to your password, 2FA requires a valid secondary verification code when logging in. Most 2FA methods employ TOTP (Time-based One-Time Password), a dynamic password generated based on time, history, physical factors (e.g., credit card, SMS phone, token, fingerprint), and encryption algorithms. It refreshes every 30-60 seconds, making it relatively secure against hacking attempts. Make sure to enable 2FA, safeguard your mnemonic phrases and keys, and never share them with anyone. This provides dual-layer protection for your account.
4.Verify the Domain Name Before Logging In Phishing websites often mimic Astral's domain name or website design to exploit user habits or visual errors, tricking users into inputting their account passwords. When logging into your Astral account, ensure you're accessing the correct domain: https://www.astralsec.com
5.Strictly Guard All Account Information Keep all your account information strictly confidential. Astral staff will never ask for your password, verification codes, or other account-related details. You can verify official Astral information through official channels such as the official email or Telegram. Rely only on official announcements for Astral-related information.
6.Never Click on Suspicious Links or Email Attachments In most cases, attackers use malicious links or attachments to steal account information. Exercise caution and avoid clicking on links or attachments from unknown sources. If necessary, ensure that the information is genuinely from Astral's official source before taking action. Astral supports personalized anti-phishing codes for your account. When enabled, emails from Astral will contain your set anti-phishing code, helping you identify genuine emails from Astral and preventing phishing scams. This strengthens the security of your account information and funds.
7.Enhance Device Security Activate password or biometric protection on your phone and computer to prevent information leaks due to device loss. Install security software on your devices and avoid downloading software from unverified sources to prevent malicious virus attacks. Refrain from using public networks (Wi-Fi) and only connect to trusted networks. Use isolated or dedicated devices to access your account and perform transactions.
8.Raise Self-Awareness for Prevention Exercise caution and heightened vigilance toward any information or instructions that cannot be verified from official sources. Safeguard important account information to enhance account security. You can also monitor account activity, including IP addresses and login times. If any suspicious activity is detected, immediately manage your login state to remove suspicious devices or disable the account. This action will temporarily halt all trading and withdrawals. Manually delete all API keys and revoke access for all devices with account access. If your account experiences anomalies, promptly submit a support ticket and contact us for assistance.