How do I enhance my OKX app security?
Protecting your OKX app is essential to safeguarding your account, assets, and personal data from unauthorized access. If the system detects security risks on your mobile device and restricts login, it may be due to one of the following high-risk scenarios. Identifying and addressing these issues promptly will help you regain access while keeping your account secure with daily protection measures.
Follow this guide to enhance the security of your OKX app and device:
Scenario 1: I have downloaded the unofficial client
What are the risk indicators?
- The app interface appears distorted or has functional abnormalities. 
- You cannot update the app through official channels. 
- The app frequently requests unnecessary permissions (e.g., access to contacts, SMS). 
How do I obtain the official OKX Client?
- Visit the official website: manually enter www.okx.com in your browser (beware of search engine ads). Select the Download option at the corner. 
- Scan the QR code securely: use your phone’s browser to scan the QR code displayed on the official website. 
 Note: avoid scanning with social/communication apps, as third-party tools may alter links.
Scenario 2: My device is infected with Malware
What are the signs of device infection?
- Your phone overheats suddenly and experiences rapid battery drain. 
- Unknown apps (for example, "cleaner," "toolkit," or "meeting" apps) install themselves automatically. 
- You experience frequent pop-up ads or unwanted redirects to suspicious websites. 
- There are unauthorized transactions on your account. 
- Your keyboard input or clipboard content is modified unexpectedly. 
How do I remove malware and secure my device?
- Uninstall suspicious apps: - Remove any apps downloaded from unofficial sources. 
- Check if "accessibility permissions" have been granted to unknown apps and disable them. 
 
- Perform a full system scan: - If issues persist: - Install and run a trusted antivirus software scan. 
- Delete any detected malicious apps and associated files. 
 
 
- Factory reset your device (if necessary): - If the problem continues: - Back up critical data securely to an encrypted cloud or an external device. 
- Perform a factory reset to restore default system settings. 
 
 
If financial risks still exist after these steps, consider replacing the device and contacting our support immediately at urgent@okx.com.
What are the things that I can do daily to secure my security?
If suspicious activity persists, switch to a trusted device and perform the following checks:
Audit the security of your account
- Reset your login password: create a strong, unique password used exclusively for OKX, learn how you can change it here. 
- Review your authenticator app: verify the authenticator app if it's correctly bound to your account. Reset it immediately if compromised, and enable Two-factor authentication (2FA) if it's not yet activated. Learn how you can do it here. 
- Audit your API permissions: head over to Profile > API for the web while select Menu > Tools > API to access via the app, and delete any unauthorized APIs available. - Proceed to select API under the Tools section on the Menu page 
- Check your active devices: head over to Profile and settings > Security > Device Management under Advanced security, and remove any unrecognized devices and reset your password. 
- Verify your P2P payment methods: head over to the P2P page > My profile > Manage payment methods for the web while selecting P2P page > Profile > Payment on the app, to access your payment account management where you can delete non-personal payment accounts to prevent fraud. - Once on the Profile page, select Payment to manage the payment methods 
- Review your withdrawal address whitelist: head over to Assets > Withdraw > Select crypto > Address Book, and remove any unauthorized addresses. 
- Audit your passkeys: for the web, head over to Security > Security Center > Passkeys, while for the app, head over to Menu > Profile and settings > Security > Passkeys, before deleting unrecognized passkeys immediately. - Access to the Security section by going through the Menu option 
Ensure your Web3 asset is well protected
- Wallet backup protocol: - Switch to Wallet > select Menu > Wallet Management option under the Basic section. 
- Select Manage wallet and select the More option in your wallet, before selecting Backup Wallet from the options in the Backups section. - Select the More option in the Manage wallet to view the list of backup options 
- Store mnemonic phrases/private keys offline (for example, handwritten in a fireproof safe). 
 Note: backup each wallet separately; never use screenshots or cloud storage.
 
- Emergency Asset Migration - Transfer assets to a secure address (e.g., cold wallet or whitelisted exchange) upon detecting risks. 
- Destroy the original wallet and generate new keys afterward. 
 - What actions should I avoid to protect my account?- Do not install unverified apps labeled as "optimizer," "cleaner," or screen-recording tools. These apps may contain malware that compromises your security. 
- Don't grant "accessibility permissions" to third-party apps, as this can allow unauthorized control over your device. 
- Don't enter your OKX account details on unverified or suspicious websites, especially phishing sites imitating OKX. 
 - How can I respond immediately to threats?- Disconnect the device from the internet 
- Use a trusted device to freeze your account via the official website 
- Email full incident details to urgent@okx.com (include device model, timestamps, and screenshots) 
 - For immediate assistance, reach out to our 24/7 Security Team at urgent@okx.com. We prioritize your security and guarantee a response within 12 minutes to help protect your assets.