Important security considerations for VC users:
- Set-up and use a dedicated email account. Avoid using the same email accounts or username that you have used in public platforms such as social media.
- Keep your VC-related email account to yourself. In any VC transaction, users need their email account and password. Thus, it is important to secure not only your password but also your email account.
- Set a strong password. Use complex and hard-to-guess passwords (i.e. alphanumeric including symbols, lower and upper cases). Avoid re-using the same password for more than one service.
- Observe basic internet security. Exercise caution in accessing your VC wallet especially when using wi-fi connections. Avoid installing software, browser plugins or downloading attachments from unknown or suspicious websites and emails. At the same time, do not leave your device unattended.
- Subscribe to multi-factor authentication (MFA) provided by the VC wallet provider. VC users should enable, whenever available, MFA options to their VC accounts. Adding another layer of authentication can provide increased security to your VC account and transactions.
- Separate your funds and use cold storage. VC funds should be separated in two or more digital wallets for transactional purposes. The main wallet used to store VC funds for future use should be kept offline or popularly known as cold storage wallet to minimize vulnerability to theft, hacking or fraud.
Full article can be read on their site at http://www.bsp.gov.ph/publications/media.asp?id=4575&yr=2017
Yes, bsp is true that you can incur a grate financial loss when you're account is not secured and when you are not aware of what ICO transaction you are going in.