eToro Security Guidelines

Here at eToro, we take security very seriously. We make sure to alert our clients to any potential security risks and precautions they could take to protect themselves. Moreover, we encourage anyone who comes across a security issue with any of our products to inform us of it and help us to keep eToro safe for everyone.

To protect your account, we strongly recommend that you follow the steps below regularly, especially if you notice changes to your account that you didn’t make.

To help make your eToro account more secure, follow these steps:

 

  • Step 1: Employ 2-factor authentication (2FA)
    2-Step Verification adds an extra layer of security to your account. The process requires you to sign in both with your password and a security code sent to your phone.

  • Step 2: Never use your eToro account password on another website
    If you enter your password in an external website and it's compromised, someone could try to sign in to your eToro account with the same information. Make sure to keep your passwords different on any service you use and change your passwords periodically.

  • Step 3: Protect your password
    Never enter your password after following a link in an email from an untrusted site. Always go directly to https://www.etoro.com/login. Also, do not save your password in the browser. If someone gets access to your computer, saved passwords are easily revealed.

  • Step 4: Use a strong password
    Don't write it down. Send it via email, or tell someone.  eToro will never email you to ask for your password or other sensitive information.

  • Step 5: Check for viruses and malware
    Run a scan on your computer with trusted antivirus software. If the scan detects any suspicious programs or applications, remove them immediately.

  • Step 6: Perform regular operating system and browser updates
    Make sure you've set your computer to update automatically. If you get a notice to update, take care of it right away, as it may include important security fixes.

 

If you use a public computer, take these extra steps:

  • Always sign out of your account.
  • Clear forms, passwords, cache, and cookies from the browser on a regular basis.

 

Note: You should perform these steps more frequently if you begin to notice suspicious behaviour, such as general slowness and pop-up advertisements.

Found a security issue? Let us know!

If you have found a security weakness/vulnerability in any of our assets, we encourage you to let us know and help us keep eToro safe.  We run a Vulnerability Disclosure Program on HackerOne to receive and keep a record of submitted issues. Please email responsibledisclosure@etoro.com to submit your vulnerability finding.

Thank you for helping to keep eToro safe and secure.