Staying Safe

The key-approved guide to staying safe online.

Phishing threats are one of the most common forms of attack that presents itself online. As the owner or staff member of a community, it is your duty to stay vigilant and assess that the links that are sent to you on other platforms or in DMs are trusted.

For Discord, ensure that your direct messages are turned off for public servers or servers where bot accounts are likely to be lurking. By simply restricting the amount of people able to message you, you are protecting yourself from many of the most common attacks.

Useful Browser Extensions

uBlock Origin

If you are not using an ad-blocker already, get with the times! (just kidding, of course). Malicious code can be embedded into website ads, as we have seen recently in the case of the Etherscan and CoinGecko phishing attacks. uBlock Origin removes these ads, is low on CPU usage, and comes with a variety of additional anti-tracking/security functionalities.

WOT

Wot (WOT Website Security & Privacy Protection) comes with several security and privacy features, with a very useful one being its phishing protection. Upon visiting a link, you are given the safety score of the website, and if a phishing link is detected then you will be warned of such.

OneTab

If you are an individual who finds that you often have many browser tabs open, this is something that can be distracting and you may find useful extensions such as OneTab, which would create a list of your open tabs for easier viewing.

Revoke.Cash

The wonderful people over at Revoke.Cash have made a browser extension to help protect against the signing of malicious smart contracts

Pocket Universe

Pocket Universe, much like Revoke.Cash, provides a useful extension that helps protect you against crypto scams

Privacy/Security

Your personal information is important, and you should ensure that your personal accounts are well concealed. As the owner or staff member of a community, you are more likely to be the target of dox and hack attempts, and with this comes a responsibility to make that task as hard as possible for the hackers.

• Use different emails for different services, so in the event your mail is compromised (Gmail is arguably the most "secure" platform in terms of their unrecognized user detection and anti-bot systems, so this platform is recommended for users to use)

• When available, opt in to use two-factor authentication on the platforms you are on. If software-based authenticators like Google Authenticator are not an option, and you do not wish to enroll your personal phone number, there are a plethora of services available (Both free & paid) for virtual phones/phone rentals.

  • Google Voice (Free, does not work on some platforms)

  • TextNow/TextFree (Free, does not work on some platforms)

  • PhoneBlur (Paid, works on most platforms)

  • Sms-Activate (Paid)