Security Best Practices

Last Updated: February 9, 2026

Protect Your Account

Your security is our top priority. Follow these guidelines to keep your account and assets safe.

Password Security

Strong passwords are your first line of defense. Follow these guidelines to create and manage secure passwords.

Do This

  • Use at least 12 characters
  • Include uppercase and lowercase letters
  • Add numbers and special characters
  • Use a unique password for each account
  • Consider using a passphrase
  • Use a password manager

Avoid This

  • Common words or phrases
  • Personal information
  • Sequential numbers or letters
  • Reusing passwords
  • Writing passwords down
  • Sharing passwords

Password Strength Tester

Enter a password to check strength
At least 12 characters
Contains uppercase letter
Contains lowercase letter
Contains number
Contains special character

Pro Tip: Use Passphrases

Instead of complex passwords, consider using a passphrase: a series of random words that's easy to remember but hard to crack. Example: "correct-horse-battery-staple-42"

Two-Factor Authentication (2FA)

Enable 2FA to add an extra layer of security to your account. Even if someone gets your password, they won't be able to access your account without the second factor.

Authenticator Apps

Recommended

  • Google Authenticator
  • Authy
  • Microsoft Authenticator
  • LastPass Authenticator
Works offline More secure No SIM required

SMS Verification

  • Text message codes
  • Automatic delivery
  • Easy to use
Easy setup SIM swap risk Network dependent

Security Keys

Most Secure

  • YubiKey
  • Google Titan
  • Thetis Key
Phishing-proof Physical security Cost involved

How to Set Up 2FA

1

Enable in Account Settings

Go to your account security settings and select "Enable Two-Factor Authentication"

2

Choose Your Method

Select between authenticator app, SMS, or security key

3

Verify Setup

Enter the verification code to confirm 2FA is working

4

Save Backup Codes

Download and securely store your backup codes for emergency access

Important: Save Backup Codes

Always save your 2FA backup codes in a secure location. If you lose access to your 2FA method, these codes are your only way to regain access to your account.

Phishing Prevention

Learn how to identify and avoid phishing attempts that try to steal your login credentials and personal information.

Malicious Email Example

Red Flags

  • Suspicious sender email
  • Urgent/ threatening language
  • Generic greeting ("Dear User")
  • Misspelled domain name
  • HTTP instead of HTTPS

Legitimate Email Example

Legitimate Signs

  • Official domain email
  • Personalized greeting
  • Informative, not threatening
  • HTTPS secure link
  • Security advice included

Protection Tips

Check URLs Carefully

Always hover over links to see the actual URL. Look for HTTPS and correct domain spelling.

Verify Email Senders

Official emails will always come from @paranex.online domains. Be wary of similar-looking addresses.

Use Bookmarked Sites

Bookmark the official PARANEX website and always access through your bookmarks.

Don't Share Credentials

We will never ask for your password, 2FA codes, or private keys via email, phone, or chat.

Report Suspicious Activity

If you receive a suspicious email or message claiming to be from PARANEX, forward it to:

phishing@paranex.online

Device Security

Keep your devices secure to prevent unauthorized access to your accounts and personal information.

Device Security Checklist

Computer Security

Mobile Security

Network Security

Browser Security

Clear Browsing Data

Regularly clear cookies, cache, and browsing history to remove potential tracking data.

Use Security Extensions

Consider using browser extensions like uBlock Origin, HTTPS Everywhere, and Privacy Badger.

Incognito for Sensitive Tasks

Use private/incognito mode when accessing sensitive accounts on shared computers.

Disable Saved Passwords

Avoid letting your browser save passwords for financial or sensitive accounts.

Using Public Computers

Never access your PARANEX account from public computers (library, hotel, internet cafe). If absolutely necessary, ensure you:

  • Use incognito/private mode
  • Don't save any information
  • Log out completely
  • Clear browsing history after
  • Change your password immediately after

Emergency Response

What to do if you suspect your account has been compromised or you notice suspicious activity.

1

Immediate Action

If you suspect unauthorized access:

  • Change your password immediately
  • Log out from all devices
  • Review recent account activity
  • Enable 2FA if not already enabled
2

Contact Support

Report the incident to our security team:

Emergency Line: +971 4 XXX XXXX (Verified customers only)
3

Device Security Check

Secure your devices:

  • Run antivirus/malware scans
  • Check for suspicious software
  • Update all security software
  • Review installed applications
4

Monitor and Report

After securing your account:

  • Monitor account activity daily
  • Report to authorities if needed
  • Consider credit monitoring
  • Update security questions

Important Contacts

Security Team

For account compromises and security incidents

security@paranex.online

Customer Support

For account access and general assistance

support@paranex.online

Legal & Compliance

For legal matters and regulatory issues

legal@paranex.online

Prevention is Better Than Cure

Enable Alerts

Set up email and SMS alerts for all account activity

Regular Reviews

Review account activity and authorized devices weekly

Update Regularly

Change passwords every 90 days and update security settings

Stay Informed

Regularly check our security blog for latest threats

Security Commitment

At PARANEX, we're committed to protecting your assets and information. We employ bank-level security measures, but security is a shared responsibility. By following these guidelines, you help us keep your account secure.

View Our Security Features