Please be aware that there are phishing sites on the Internet that look like KuCoin. These sites are fake and harvest your credentials which can then be used to login to your account. These sites will capture many different things including: username, password, 2FA code, and possibly even ask you for your email username and password.
KuCoin will never ask you for your email username and password, so please never enter those on any login page that looks like a KuCoin site.
We require users to enable two-step verification, to further secure their accounts and protect them from most automated attacks. However, many users will still use the same passwords and email combinations they use on other sites as well as weak passwords to protect their accounts.
KuCoin keeps your user information secure and has never leaked any passwords. However, many sites in the Crypto world have been hacked, and the hackers have databases which they attempt to use to login to accounts.
We fully considered the safety of user’s assets, so we opened the mail validation function. The system will send an email to the user’s login E-mail address when users withdraw funds. The funds can be withdrawn after you click "confirmed". If your coins are withdrawn by others, it should be assumed your email password and KuCoin password are compromised. Others may have hacked into your mailbox and KuCoin account. If this occurs, please refer to our advice as follows:
- Contact the customer service of the mailbox and change the email password.
- Change the login password of your KuCoin account.
- Check that the Google two-step verification if is working normally.