Crypto Exchange Kraken Makes 2FA Mandatory and Forms New Security Lab

Published at: March 27, 2019

Nick Percoco, chief security officer at United States-based cryptocurrency exchange Kraken, announced that two-factor authentication (2FA) is now mandatory for the exchange’s users in a post on the company’s official blog published on March 26.

2FA, in this case, is an additional component needed to access an account. Often 2FA requires the user, after entering their login information, to also enter a one time password (OTP) received via SMS. Per the announcement, Kraken supports Google Authenticator  and YubiKey as 2FA implementations.

YubiKey is a hardware device dedicated to generating OTPs, while Google Authenticator is a smartphone app meant to do the same. The post points out that 2FA was available as an additional security option to its users since Kraken's launch in 2013.

The announcement also notes that the measure is part of a broader set of changes included in its security features roadmap that spans “into 2020 and beyond.” While the roadmap itself won’t be made public, Percoco claims that the future changes will be announced and will need action on the part of users.

The post also discloses the formation of the Kraken Security Labs, a team dedicated to enhancing the security of the company’s products and environments. Furthermore, the team will also perform vulnerability research against third party products, such as hardware and software wallets and related technology.

Percoco also promises that Kraken’s cybersecurity team will responsibly disclose the identified issues to improve the overall security of the crypto ecosystem.

As Cointelegraph recently reported, major hardware wallet manufacturer Ledger had unveiled vulnerabilities in its direct competitor Trezor’s devices. Trezor, on the other hand, responded by claiming that none of the issues identified were critical.

Fraudulent hacks are on the rise, with a recent report claiming that in Japan, the number of hacked Internet of Things devices and cryptocurrency networks nearly doubled in 2018 when compared to the previous year.

Tags
Related Posts
Binance CEO Suggests Crypto Exchanges Are Safer Than Keeping One’s Keys
Changpeng Zhao, the co-founder and CEO of cryptocurrency exchange Binance, suggested that for most, keeping crypto assets on an exchange is safer than keeping the keys themselves. Zhao gave his comments in a tweet on Jan. 19 after famous crypto skeptic and gold bug Peter Schiff complained that he lost access to his Bitcoin (BTC). Invoking the phrase “SAFU” — a slanger term in the crypto community for “safe,” Zhao said: “Many hardcore crypto [organizations] advocate storing your own keys. But the truth is, today most people are not able to secure a key even from themselves (losing it). A …
Bitcoin / Jan. 20, 2020
How to keep your crypto safe in 2023: a few tips from an analyst
There is no excuse for not putting a few hours of research into how to properly custody your crypto, according to lead on-chain analyst James Check. Joining the latest debate around self-custody, the analyst pushed back against the notion that managing private keys is too complicated and risky for the average crypto user. “If you have gold in your vault, if you have cash in your wallet, it's the same concept: you need to exercise a level of responsibility,” said Check in our latest Cointelegraph interview. Check argued that, while third-party custody and semi-custodial solutions such as collaborative custody may …
Adoption / Jan. 9, 2023
Bilaxy exchange suspends website after ERC-20 hot wallet hack
Bilaxy, a lesser-known cryptocurrency exchange, has confirmed a major hacking incident, reporting the losses of funds due to an exploit of the platform’s ERC-20 hot wallet. Bilaxy announced on its Telegram channel that the crypto exchange suffered a “serious hack” on Saturday between 6 pm and 7 pm UTC, resulting in the transfer of 295 different ERC-20 tokens. According to the exchange, the affected tokens were transferred by the hacker to a single address. At the time of writing, the tokens are valued at $170,600, with the most recent transaction sending out 50 Ether (ETH), or about $159,000, on Monday. …
Bitcoin / Aug. 30, 2021
Huobi Korea scores certification from Korea Internet and Security Agency
Huobi Korea, the South Korean arm of the world’s second-largest cryptocurrency exchange by trading volume, has been certified by a major regulator. According to an announcement on Jan. 18, the Korea Internet and Security Agency, or KISA, has granted Huobi Korea an information security management system, or ISMS, certification. The ISMS certification will provide Huobi Korea with a comprehensive management system to ensure security and compliance with the Special Payment Act — new legislation requiring local crypto businesses to report transactions in line with revised Know Your Customer and Anti-Money Laundering policies. Specifically, exchanges must report the real names of …
Bitcoin / Jan. 18, 2021
Crypto recruitment execs reveal the safest jobs amid layoff season
Despite a wave of heavy crypto layoffs to start the new year, employees in technical and engineering roles, as well as senior management, will likely continue to see “strong demand” for their skills, recruitment professionals believe. It’s been a tough first few weeks of 2023 for crypto businesses and their staff. Within just two weeks, the market has already seen more than 1,600 crypto-related job cuts as a result of continued market volatility and uncertainty. However, not all departments have seen the same level of cuts. SAFU: Senior-level tech and engineering Rob Paone, founder and CEO of crypto recruitment firm …
Blockchain / Jan. 18, 2023