Account security: features, information and tips

We have multiple measures in place dedicated to keeping your account safe and protecting you from fraud. Below are some of the extra features we have which you can use to boost the security of your account.

As well as this, always remember to keep your password a secret.

What tools can I use to enhance my account security?

In addition to your password, you can also use a PIN and RSA Security Token to make logging into your account more secure. Here's how they work:

  • PIN: This is a code issued to you used as an extra security feature besides your password. You'll need it each time you log in and also for certain activities such as Cashier-related transactions.
  • RSA Security Token (if available in your jurisdiction): This a small device that, once activated, is unique to your account, upgrading your login security to 'two-factor authentication'. With the token enabled, every time you log in, you'll be asked to enter your password and PIN, as well as the numbers displayed on your RSA Security Token. These numbers change every 60 seconds helping to defend against keyloggers and prevent unauthorized account access.

To apply any of these to your account, log in and go to:

  • Website: Account → Settings
  • Desktop: Settings → Account Details
  • Mobile app: Account → Login & Security

How do you keep online transactions secure?

It's extremely important to us that transactions are safe. This is why during an online transaction the information you give is confidential and encrypted using algorithm methods.

If you're using a credit or debit card on our site, you can be asked to give a special security code to the card-issuing bank to allow them to allow online transactions when prompted on our payments page. This is a 3D-Secure code, and it's designed to enhance security when you use your cards for online purchases. This code can also be called 'Mastercard SecureCode' or 'Verified by Visa' depending on the card type.

What can I do to keep my information safe?

We have many tools in place to help keep your information safe, but you also have a role to play. Here are the most important things to remember:

  • Never let the system remember any of your passwords. While systems provide this as a matter of convenience, this is the most common 'hack'.
  • Password-protect your Windows system so that you have to enter a password to get back in when it goes to sleep.
  • Don't write your password down where somebody can find it.
  • Don't leave your account logged in if others can access your computer or device.
  • Always choose a strong password.
    • Never use a word that can be found in a dictionary.
    • Never use your User ID, kids' names, friends' names, birthdays, or a password related to the site.
    • Make it lengthy (at least 8 characters long). The longer the password, the more secure it is.
    • Combine letters, numbers, and symbols.
    • When changing passwords, never reuse an older password or any variation of it.
  • Never share your account password with anyone. You wouldn't let someone else access your online banking account, so why let someone else access your playing account?
  • Don't use the same password in any two locations. We know it's easier to use the same password everywhere, but this also makes it easy for hackers.
  • Be aware of falling prey to scams and hustles where others want to access your account. If an offer sounds too good to be true, it probably is. If someone chats with you online claiming to be a friend who wants a loan, call and ask first.
  • Never log in to Windows to play as Administrator or equivalent. Use a restricted user account to ensure keyloggers or Trojans have a much more difficult time gaining access.
  • Use at least two good spyware scanners. Windows Firewall blocks attacks from the outside, but it's good practice to use one of the following as well: Norton, McAfee, ZoneAlarm, Kaspersky.
  • Exercise good judgment when deciding what to download. Virus/Trojan/Spyware scanners only detect things they know about. It's still possible to catch a customized piece of spyware or a keylogger that hasn't been reported to the scanner authors.
  • Don't play from anybody else's computer or device. When you use someone else's device and type in your User ID and password, it adds a new risk to your account. This other person could now have your ID and password, and you don't know if this person's computer is safe.
  • Secure your wireless connection.
  • Keep your operating system up to date.

How do I know if someone has accessed my account?

If you're worried someone might have unauthorized access to your account, here are some red flags to look out for:

  • A third party reset your password, and you received an auto-email with a new password to your email address.
  • You received an auto-email with a temporary PIN, but you haven't logged in from a new location. Or, you received an auto-email saying that your email address has been changed.
  • Your account balance is different.
  • A new payment method has been registered.
  • There is suspicious gameplay on your account, not by you (based on playing audit history).
  • You receive auto-emails related to transactions on your account (deposits, transfers, or withdrawals). If there was an unauthorized transaction, you should also receive a notification in your email inbox.

If you think there has been unauthorized access to your account, contact us, and our Security team will take action.

Feedback

Was this article helpful?

Related Help Articles