ePayService Safety Guide: How to Protect Your Account
Published 21 March 2021
ePayService Safety Guide: How to Protect Your Account
Published 21 March 2021
If you are an active internet user, then you definitely have dozens of accounts on various sites. Most people protect their accounts with trivial passwords. It's time to fix this situation and secure your accounts.
1. Choose a strong password. Use combinations of numbers, punctuation marks of at least six letters. Do not repeat the same password on different sites, because after hacking one site, you put all your accounts at risk.

2. Do not use your name, birthday, the word 'password', qwerty, and other standard combinations in passwords. In 2020, the most popular password was 123456.

3. Never share your password with other people, let alone strangers.

4. Always log out if you are logged into your account from an unfamiliar computer.

5. Make sure your mailbox is secure. After all, if someone gets access to it, then most likely they will get access to your account in various services.

6. Do not use public Wi-Fi hotspots, but if necessary, connect to them via VPN.
To enter ePayService and confirm payment transactions, one password is not enough, we protect your account as much as possible, therefore we use two-factor authentication. What is it? 2FA is an additional layer of security that ensures that no one gets into your profile, even if your password is stolen.

Two-factor authentication assumes that you use 2 of 3 types of data required to use your account:

- something you know;

- something you have;

- something peculiar to you.

Point 1 includes pin codes, passwords, payment passwords, etc., that is, what the user himself invented, remembers and enters when logging into the account. This is a mandatory step for our service.

Point 2 means that the user has a cellphone, for example.
There are several two-factor authentication methods available for ePayService:

- sms with a code that we will send to your phone. This method is the most popular and simplest, but less reliable according to some experts. Here, a problem may arise if there is no network. If you find yourself in a place without internet connection, then you yourself will not get into your account, because you will not receive an access code. Another problem is that the sim card may be duplicated or the mobile provider may have difficulty passing sms from foreign senders.

- PUSH notifications that are opened using the ePayService app.

- one-time login codes generated by the Google Authenticator app. This method is considered one of the most reliable and, unlike sms, you do not need to rely on either telecom operator or even network availability.

And point 3 is used if the biometric option is supported by your device, for example, for taking a fingerprint. This method is not yet widely used, but we protect the login to the ePayService app this way as well. Users can sign in and confirm the transaction with a PIN code, Face ID, or Touch ID.

Of course, creating a simple password and not using 2FA seems quick and familiar, but eliminating the consequences of a hack can be significantly more expensive both financially and in terms of time spent on it.
By Oksana
ePayService Team