Author

Topic: Poloniex.com new security (Read 1056 times)

hero member
Activity: 868
Merit: 535
July 23, 2017, 12:15:16 PM
#25
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Hmm. Whenever they need some sort of security check on my account, I use a google authenticator to answer a 6 digit requirement. After that they ask me to confirm it via e-mail. That has been how I used it ever since. Not sure if there is any other way to verify anything on poloniex aside from this. Though I don't think there is any security risk unless your email is also hacked.
sr. member
Activity: 546
Merit: 250
July 23, 2017, 11:59:44 AM
#24
The security is always a good thing to have when dealing with money. The google authenticator is recognized to add about 99% added security to any account you use, starting from Gmail to your favorite website or exchange. I use google authenticator 2FA and so far I have not had any problem with Poloniex website.

But personally upon some upgrade from google, most of there authentication process is not just as basic as loging in on the same country. Because chances are emails have its own address depending on where you are in the globe. Because not all emails have the same authenticator espicially with 2fa that is used by google. But only hackers with great skills could decode your own but i think it just waste of time hacking an account that is just used for authorization.
legendary
Activity: 3318
Merit: 1247
Bitcoin Casino Est. 2013
July 23, 2017, 11:12:52 AM
#23
The security is always a good thing to have when dealing with money. The google authenticator is recognized to add about 99% added security to any account you use, starting from Gmail to your favorite website or exchange. I use google authenticator 2FA and so far I have not had any problem with Poloniex website.
sr. member
Activity: 644
Merit: 263
July 23, 2017, 11:08:39 AM
#22
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Yes it is enough security as long as your google account is using 3D secure password and google authentication on. These things are very necessary to have maximum security to your funds and security pins that your are receiving over the mail. I'm sure cracking your poloniex account is not possible as long as you have your google account completely secured. You see now poloniex much secure due to its pin verification step.
sr. member
Activity: 420
Merit: 250
The All-in-One Cryptocurrency Exchange
July 23, 2017, 10:22:06 AM
#21
It is actually a good thing Poloniex are taking precautionary measures especially with the August 1 coming, and I really don't mind if every time I log in at Poloniex you have to log in a security code sent to your email but this is really not enough security if you have lots of coins or bitcoin on your account. The best thing to do though is place a 2fa authenticator on every account you have for trading.
sr. member
Activity: 476
Merit: 250
July 23, 2017, 05:26:30 AM
#20
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Yep same here, i had to enter a verification code that was sent to my mailbox before i could receive access to my account.

This is great for the security of people who don't have 2fa on their account previously but really makes no substantial difference to those who already have google authenticator 2fa enabled. Anyways it shouldn't affect anybody negatively apart from it being a hassle especially when you're on mobile or on a public computer.

Though please don't lose access to your email because if you do then you're totally screwed. You may not get a proper response from support for ages and you probably have some sort of money in there.
sr. member
Activity: 532
Merit: 250
July 23, 2017, 04:28:48 AM
#19
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

It really depends on if you're comfortable with this level of security or if you want to go further than just that. I'm not using poloniex that much now since they're having problems but it seems to be the case with everyone.

You still have to type your password which means that it's just an extra layer of protection on top of your password. It sure can be broken easily by compromising your email but that's extremely unlikely if you have a strong password and then hacker will still have to guess your hopefully unique polo password.

Not an issue honestly to worry about, it's just a new feature.
hero member
Activity: 1456
Merit: 624
Maintain Social Distance, Stay safe.
July 22, 2017, 06:41:06 PM
#18
For me the best to use is 2fa never had any problem or hack activity to my account or even they are trying to login they cant login because it will be ask first for autheticator and i use google authenticator..
That much more secured but you should always back up your authenticator once your app is corrupted or your computer crashed.
there are site that actually you can receive pin its also secured i think once you email is always unique in password..
legendary
Activity: 1526
Merit: 1179
July 22, 2017, 03:52:38 PM
#17
What you should aware is pishing sites which could ended as hack, and if malware get through your system, say goodbye to your money.
In most cases people are too lazy to activate extra security options when it comes to accessing important sites (which crypto exchanges are also part of).

There have been quite some examples of people experiencing multiple unauthorized log-ins, and it all comes down to people not having 2FA enabled.

It's insane how careless people are when it comes to the protection of their exchange accounts as unwanted account intruders might cash out, or randomly sell or buy with whatever you have in your account.
hero member
Activity: 910
Merit: 523
July 22, 2017, 08:21:47 AM
#16
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Security depends on your own hands.

Even without 2FA you can be safe but of Im not saying it's not recommended. I don't use 2FA authentication for Poloniex for years now and still not having a problem. This shows that the only thing we are prone to hacking is if Poloniex will turned into fraud or some malwares entered our PC system.

Im receiving too an EMAIL with PIN CODE and I don't have a problem to that.

And I've never seen about Poloniex security problems before, if your account get hack, then it should be his fault.
Yes, I'm more concern about Poloniex do such things about fraud but they won't do that, risk their reputation for few thousand dollars.
What you should aware is pishing sites which could ended as hack, and if malware get through your system, say goodbye to your money.
full member
Activity: 228
Merit: 100
July 22, 2017, 05:45:35 AM
#15
they run the new verification system, if you don't complete it, there is no $2000 quota again.

is this one of new security?

No, they have email verification for years. Anyways it is good to activate 2fa for a good security. Easy to handle, the only problem is you don't have a phone. But still you can add on your pc Google authentificator

I never used poloniex, but I am curious that poloniex as a exchange had not enabled GAuth before???
legendary
Activity: 3122
Merit: 1398
For support ➡️ help.bc.game
July 21, 2017, 01:50:27 PM
#14
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Security depends on your own hands.

Even without 2FA you can be safe but of Im not saying it's not recommended. I don't use 2FA authentication for Poloniex for years now and still not having a problem. This shows that the only thing we are prone to hacking is if Poloniex will turned into fraud or some malwares entered our PC system.

Im receiving too an EMAIL with PIN CODE and I don't have a problem to that.
legendary
Activity: 1750
Merit: 1115
Providing AI/ChatGpt Services - PM!
July 21, 2017, 01:39:59 PM
#13
The ultimate security you can get is from 2FA using google authentication, email verification code can be breached if you are using weak password for your email or you are using same password that you have used in multiple other sites.
Correct.The hacker who established access to your account on poloniex mostly have access to your email too,2fa fails here.That's why the use of registered mobile phones with OTP are a more scured way of doing it.Google Auth is great but will fail if hacker has access to your computer anyway.

I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?
I never received a pin in my email,just a link to verify if I'm the rightful owner.When did you get the update ?
hero member
Activity: 854
Merit: 500
July 21, 2017, 01:02:55 PM
#12
Yes i think all poloniex accounts are now added security and i think this is a good step from poloniex, even though the account does not activate 2FA but now every time we login we are required to put the code provided by poloniex to the email we use. I think this feature the same as 2FA and it will be nice and more secure.
When they have added this? They have made this mandatory or optional? I have 2FA enabled there so I think email verfication might not be needed at all.

Anyway I suggest all other to activate 2fa rather than just relying on this email verification.
legendary
Activity: 1568
Merit: 1002
July 21, 2017, 09:36:03 AM
#11
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Yes i think all poloniex accounts are now added security and i think this is a good step from poloniex, even though the account does not activate 2FA but now every time we login we are required to put the code provided by poloniex to the email we use. I think this feature the same as 2FA and it will be nice and more secure.
hero member
Activity: 1792
Merit: 534
Leading Crypto Sports Betting & Casino Platform
July 21, 2017, 09:29:24 AM
#10
In order for your Poloniex account to be compromised with this security, the attacker would need to either:

-Compromise the passwords of both Poloniex and your email provider;
-Brute force your passwords using a computer (possible if you use a weak password);
-Infect your computer with malware such as a keylogger.

If you add 2fa, the attacker needs to do the same things as before, but also find and reach your physical location.

Unless there's a problem with 2fa, that's how you stay safe.  The majority of attackers will act just online.
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?
As long as your email address has a completely different password to your Poloniex account, it's pretty safe.
Malware from dodgy BTC sites is common when BTC is such an appealing thing to steal.  Be careful.
legendary
Activity: 1652
Merit: 1088
CryptoTalk.Org - Get Paid for every Post!
July 21, 2017, 09:25:09 AM
#9
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

As long as your email address has a completely different password to your Poloniex account, it's pretty safe.

The danger is if you have similar passwords and then BOTH your email account and Poloniex account is hacked.

Be Safe. Make sure all your passwords are completely different and are long and full strength.
hero member
Activity: 2128
Merit: 520
July 21, 2017, 06:57:53 AM
#8
they run the new verification system, if you don't complete it, there is no $2000 quota again.

is this one of new security?

No, they have email verification for years. Anyways it is good to activate 2fa for a good security. Easy to handle, the only problem is you don't have a phone. But still you can add on your pc Google authentificator
yeah its quite an additional security since they always encounter attacks this process is annoying though but for me its okay than become a victim
of the hacker and empty your wallet, 2fa is also another good option to be more secure just needed to do some process and it will delay your
log in and trades.
sr. member
Activity: 462
Merit: 254
July 21, 2017, 05:58:09 AM
#7
The new security codes of poloniex may make accounts safer, but I am upset, because I feel incapacitated by polo. On mobile, polo is not able to memorize my login just one hour. So I have to provide the code additional to my password at nearly each new page view. Polo should let users decide how they want to secure their account.
sr. member
Activity: 728
Merit: 250
Look ARROUND!
July 21, 2017, 05:26:27 AM
#6
they run the new verification system, if you don't complete it, there is no $2000 quota again.

is this one of new security?

No, they have email verification for years. Anyways it is good to activate 2fa for a good security. Easy to handle, the only problem is you don't have a phone. But still you can add on your pc Google authentificator
sr. member
Activity: 484
Merit: 250
HubrisOne
July 21, 2017, 05:07:38 AM
#5
they run the new verification system, if you don't complete it, there is no $2000 quota again.

is this one of new security?
hero member
Activity: 644
Merit: 500
July 21, 2017, 03:21:01 AM
#4
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

i think several exchanger use Pin code if you have not 2FA
if you have application 2FA, you can make 2FA youre poloniex account
i think is very safe if use 2FA
hero member
Activity: 960
Merit: 502
July 21, 2017, 02:38:12 AM
#3
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?

Well these days is more difficult to break a gmail account. Even you as owner if you login from a different country your account, it will be difficult to login if you are not having a phone atached or another recovery email, but as far as i saw this is only at gmail.

People are often saying weak password and shits. It doesn't matter. If you get a trojan with keylogger ...you are doomed.

Also the most secure thing is to have 2fa. The easiest way to activate it is to download google authentificator on your phone. Also this can be hacked too by professionals if they can find your api code on poloniex for example or other ways.

So my advice if you're handling is to activate 2fa too. Just mail verify is not enough
legendary
Activity: 1120
Merit: 1008
CryptoTalk.Org - Get Paid for every Post!
July 21, 2017, 02:35:32 AM
#2
The ultimate security you can get is from 2FA using google authentication, email verification code can be breached if you are using weak password for your email or you are using same password that you have used in multiple other sites.

I have 2FA enabled in my poloniex and lots of other accounts after getting hacked few months ago.  
sr. member
Activity: 585
Merit: 250
July 21, 2017, 02:11:10 AM
#1
I often received a one time pin code through my email anytime i try to log in to my poloniex account and i must confirm my access using this codes but is this enough a security ? Can it not be broken easily?
Jump to: