At TradingView, we work hard to protect your account. It’s important to remember, however, that we can only do so much and the most important steps to security have to be taken by the user. Here are a few tips you can do right now to make your TradingView account as secure as possible:
- Use unique passwords for all sites and applications. Don’t put all your eggs in one basket: even if one of your accounts on another platform gets hacked, your TradingView account will remain secure. There’s no need to scramble to remember all of your passwords, either. You can use password managers via your web browser, operating systems, and/or a special application or service.
- Use strong passwords. Your password should be difficult to guess, for both potential hackers and other computers. We recommend using a randomly generated password with a length of 12 characters and more. If you use a password manager, this can be very simple. When thinking of a new password, please remember that length is more important than special characters (i.e. @,#,!,/,<,?,%). Avoid using passwords created from common sequences or neighboring keys on the keyboard, such as "abcd1234", "1qaz2wsx", etc., such passwords are easily guessed. For more information, please refer to crafty comic below:Image by Randall Munroe
- Use two-factor authentication (2FA) to protect your account. This is a very effective way to protect your account because even if your password is stolen, an attacker will not be able to access your account. You can enable two-factor authentication by going to the "Security" tab in your profile settings. We recommend using authenticator apps, as they’re the more secure and reliable option compared to text messages. Also, save your backup codes – just in case. Please see this solution to know how to configure 2FA.
- Only use our official TradingView applications and website. Our website is hosted only on tradingview.com. Our mobile app is available on Google Play for Android and App Store for iOS. Our desktop application is available on our site. Please avoid downloading applications from other sites. Hackers can use phishing sites, as well as advertisements in search results, to promote apps that contain malware.
- Check for breaches. Check if your account has been breached and/or leaked by any commonly used websites or services. You can use either Predictive Phishing Protection in Google Chrome or try Firefox Monitor or haveibeenpwned.com. Change your password immediately as soon as you know your account/email and/or password have been breached.Sometimes it's good to check your mailbox: we'll always let you know if someone logs into your account from a new device. If you see an intruder, terminate all active sessions, change your password, and enable 2FA.
- If you've lost access to your account, please use this solution to recover access.
We hope this guide helps you secure your account, and we hope you take each piece of advice seriously. Your security is important to us. If you know someone who may also benefit from reading this, please consider sending it to them if you think it will help.
Thanks for reading,The TradingView Security Team