GENERAL

  1. PHISHING 101: WHAT IS IT AND HOW TO AVOID

    What is phishing?

    Phishing is the act of setting up fake websites or emails that pretend to be from reputable businesses, with the goal of acquiring a user’s personal or account data. With these fake websites and emails, which may sometimes even look legitimate or identical to the original websites, once you enter your account or personal information on these poser websites, your account and details will end up being compromised.

    How to avoid being a victim of phishing?

    Before entering any of your personal details into any cryptocurrency trading website like VantageX, do the following:

    • Check the URL. Make sure that you are visiting the correct URL. Better yet, bookmark this now: https://www.VantageX.com to have a link to the correct website and avoid being misled by poser websites.
    • Check the website’s safety. Legitimate sites have a Site Certificate that indicates safety. If you are using Google Chrome, you can check the security status to the left of the web address. If you are using a different browser, please look at how to view the Site Certificate in the settings of your browser.
    • Don’t click on ads when searching VantageX on Google. Phishing sites often use ads that pose as the real VantageX website to lure potential victims.
    • Check the Sent email address. To avoid phishing via email, make it a practice to look into who exactly sent you the message. Some emails that pose as legitimate ones use an email domain different from the official VantageX website; that should tip you off that you’re dealing with a suspicious party.

    What do I do if I think my account has been phished/compromised?

    If you think your VantageX account may have been compromised, or security settings attached to your account was leaked, change your password and settings NOW for all accounts. We have more tips here on what to do if you think your account has been hacked.

  2. HOW DO I MAKE MY ACCOUNT SECURE?

    You log into your account on VantageX using your email address, password, and a unique 6-digit Two Factor Authentication (2FA) code sent to your email after logging in -- the code that you have to enter before finally accessing your account.

    While we have put in place adequate security measures to protect your account, we encourage you to do your part in further securing your account to protect it from unauthorized access.

    • Strong password equals secure account. VantageX requires you to enter a password that has at least 8 characters long and includes at least one of each of the following characters: 1 uppercase letter, 1 lowercase letter, 1 special character, and 1 number. A more complicated password protects your account better. And avoid using passwords that you already use on other accounts.
    • Use 2FA. Under the Settings page of your VantageX account, you can enable 2FA by following the steps listed under “Two-Factor Authentication.” Read these tips for more details on how to set up 2FA on VantageX. VantageX uses 2FA for the following functions: login, withdrawals, transfers, password resets, and profile edits.
    • Use a unique email address. If needed, create a new email address made solely for creating a VantageX account. Avoid using an email address that you have used on other Internet services, whether crypto-related or not. Remember that you use your email address to log in on VantageX, so if other people are aware of the email that you use on VantageX, especially if you use that email address as your main address, you run a greater risk of having your account compromised.
    • Use VantageX security features. We currently have tools and features that further help you secure your account, like a user PIN for withdrawals, as part of a three-step withdrawal process, and a Withdraw Whitelist, where you can control which wallet addresses are permitted for fund transfers. Future security features include the IP Whitelist, where you can limit the IP addresses allowed to access your account, and the User Guarantee, where you can sign up for a trade insurance account to increase trading fees. (Please take note that the additional trading fees incurred by User Guarantee will be used as a guarantee fund in case of a system failure or a system hack.)

    Aside from those steps, you can also do these security best practices:

    • Do not use shared devices to access websites, especially those where you use money.
    • Never share any of your passwords.
    • Log out of your account completely after you’re done using a website.
    • Secure all of your devices when you’re not using them.
    • Be aware of websites’ security features, especially if you’re using money on any of them.

    If you think your VantageX account may have been compromised, or security settings attached to your account was leaked, change your password and settings NOW for all accounts. We have more tips here on what to do if you think your account has been hacked.

  3. WHAT IS 2FA AND HOW TO SET IT UP?

    Two Factor Authentication (2FA) is a security layer added to your account to protect it even in cases when someone has your email and password. 2FA helps in making sure that your account is not compromised.

    On VantageX, the default method of 2FA for login is email 2FA. Through this method, you log in using your email address and password, then you use a unique 6-digit code sent to your email as the final item to provide before you access your account. This 6-digit code expires 15 minutes after being sent via email.

    At VantageX, we encourage everyone to upgrade their 2FA settings from their default setting,either through the Google Authenticator app or the SMS option. You can do this by accessing your Account Settings on your VantageX account. This added step protects your account in case your email address and password are compromised to the point where an unauthorized party has access to your email inbox.

    Here’s the step-by-step guide on how to set up an enhanced 2FA on VantageX:

    Using Google Authentication

    • Step 1: Go to the 2FA page. After you log in to your VantageX account, select Settings on the top right part of the website. Then under Site Settings, select Two-Factor Authentication and then select Google Authentication.
    • Step 2: Download Google Authenticator app. This app, available for both iOS and Android phones, generates a 6-digit unique code for accessing your account. This code gets changed every minute.
    • Step 3: Scan the QR Code. Use your newly installed Google Authenticator app to scan the provided QR code displayed on the Two Factor Authentication webpage.
    • Step 4: Back up your secret key. Write the secret key provided on your VantageX account’s 2FA webpage in a secure document. The secret key allows you to connect a new phone to the existing login credentials allowing you to access the 6 digit code for unlocking 2FA and link a new phone to an existing account
    • Step 5: Enter the 6-digit code. Google Authenticator will flash a 6-digit unique numeric code that you should enter on your VantageX account’s 2FA webpage to finalize the 2FA activation.
    Using SMS Authentication
    • Step 1: Go to the 2FA page. After you log in to your VantageX account, select Settings on the top right part of the website. Then under Site Settings, select Two-Factor Authentication and then select SMS Authentication.
    • Step 2: Enter your 10-digit mobile number. This is the number where we send your unique codes for authentication purposes.
    • Step 3: Click the Enable SMS Verification Code. After this, VantageX will send a unique six-digit code to you via a text message to your registered phone number
    • Step 4: Enter the 6-digit code. Once you’ve entered the code, VantageX will flash a note that says SMS authentication has been enabled.

  4. WHAT ARE THE DIFFERENT TYPES OF 2FA?

    VantageX supports three kinds of Two Factor Authentication (2FA) on the website. VantageX uses 2FA for the following functions: login, withdrawals, transfers, password resets, and profile edits.

    • Email 2FA. – This is the type of 2FA that is automatically activated when you register for a new VantageX account. Through this method, every time you log in to your VantageX account, you will receive an email of a unique, time-sensitive, dynamic code that will be emailed on your registered email address. Enter this code to finalize the login. This 2FA method also applies to other actions like Security Settings. Lockout, Withdraw, and Transfer.
    • Google 2FA – This is a type of advanced 2FA that uses the Google Authenticator app for implementing authentication checks on your account. We strongly recommend that you use a dynamic 2FA app on your account; a dynamic 2FA app like Google Authenticator generates a unique code every minute, further securing your device.
    • SMS 2FA - This is a type of advanced 2FA that uses text messages for implementing authentication checks on your account. If you don’t want to download an authenticator app, you can always opt for SMS authentication by registering your phone number.

  5. WHY IS THERE ALWAYS 2FA WHEN I LOG IN?

    At VantageX, we prioritize your account’s security. An important part of that security protocol is confirming that you indeed are the one accessing your account, every single time. For this reason, we require Two-Factor Authentication (2FA) for significant actions you do on your account, from log-in to withdrawal.

  6. I THINK MY ACCOUNT IS HACKED, WHAT SHOULD I DO?

    If you notice something unusual about your VantageX account and suspect that it has been accessed without your knowledge, here are the actions that you should take NOW:

    • Change your password. Ensure that your password adheres to recommended password strength guidelines on VantageX. Make it unique to your VantageX account—meaning, it should not be used anywhere else—and make it as complicated as possible.
    • Reset your 2FA. We give you a comprehensive guide here on how to reset your 2FA. This is particularly important when you think the breach is made from your device, especially if you previously lost that device.
    • Update security settings. Change your password and 2FA settings from a previously unused, trusted and secure device. This way, you’re more sure that your account will not be accessed by an unauthorized party.
    • Report to us. File a support ticket on the VantageX Support System page and provide details about your concern regarding a possibly compromised account. Include pertinent information such as coin names, transaction IDs, screenshots, photos, documents, and other files that support your security concern.
    • Change your email security settings. Change your passwords and other security settings like 2FA for your email. Keep in mind that a significant part of accessing your account is done through your email, so strengthen the security on your email account.

  7. HOW DO I RESET MY 2FA?

    In case you cannot access your VantageX account and need to reset your Two-Factor Authentication (2FA), our support team will assist you promptly. Please raise a ticket on the VantageX Support System page immediately. From there, our support team will verify your identity and circumstances, so prepare proof such as account activity, IDs, or other documents that may be requested. We will not reset your 2FA settings without verifying your identity and will contact you further if the details you supply are not sufficient.

    These are the most common types of 2FA issues on VantageX:

    • I use Email 2FA but lost access to that email. If you no longer have access to your email account and you are unable to access your emails to retrieve your dynamic email code, the support team will be able to change the email address associated with your account after you have sufficiently verified your identity.
    • I use Google/SMS 2FA but lost/broke my phone. If you have lost the device that you had linked to your Google/SMS 2FA, our support team will be able to reset your account after you have sufficiently verified your identity.