As Kraken’s Chief Security Officer, I’ve spent the past two years building one of the most advanced security programs in the cryptocurrency industry.
While most of my work involves hardening our security behind the scenes, I also work with our Product and Engineering team on a roadmap for client-facing features.
One of our goals is to make it easier for our clients to identify and activate security features that, while optional, really help to lock down their accounts and prevent compromises that could potentially result in a loss of funds.
Two-factor authentication (2FA) for account sign-in is probably the best example of a security upgrade that every client should set up, and we aim to make this process as easy as possible.
Another goal on our road map is to bake more security features directly into our platform that don’t require any set up process for our clients at all.
Today, I’m happy to announce the release of four new security enhancements, available for all clients – Security Shield, Security Checkup, Device Approvals, and Device Management.
The next time you sign in to Kraken you will notice a small shield in the upper right corner of your screen. This shield will indicate the security state of your account and will prompt you to take action. Pulsing red is the lowest possible state and solid green is the best. Go for green, of course!
When you click on the Security Shield, you will have the option to begin a workflow that will walk you step-by-step down the path to a more secure account – from adding sign-in 2FA all the way to enabling the Global Settings Lock. Of course, you don’t have to add every security feature, but Security Checkup is there to help make every step simple and easy for you!
Many account takeovers are done by means of a phishing attack where an attacker intercepts a client’s sign-in credentials and uses them to sign in from the…