BTC $62,976.05 +2.22%
ETH $1,741.01 +1.25%
BNB $570.91 +1.72%
XRP $1.09 +1.70%
SOL $77.65 +1.47%
TRX $0.3313 +0.95%
DOGE $0.0725 +1.29%
ADA $0.1664 +0.57%
BCH $237.21 +2.47%
LINK $7.70 +2.12%
HYPE $67.64 +1.12%
AAVE $91.96 +6.23%
SUI $0.7181 +2.91%
XLM $0.1813 +0.19%
ZEC $468.13 +3.15%
BTC $62,976.05 +2.22%
ETH $1,741.01 +1.25%
BNB $570.91 +1.72%
XRP $1.09 +1.70%
SOL $77.65 +1.47%
TRX $0.3313 +0.95%
DOGE $0.0725 +1.29%
ADA $0.1664 +0.57%
BCH $237.21 +2.47%
LINK $7.70 +2.12%
HYPE $67.64 +1.12%
AAVE $91.96 +6.23%
SUI $0.7181 +2.91%
XLM $0.1813 +0.19%
ZEC $468.13 +3.15%

The Hong Kong SFC requires cryptocurrency platforms and brokers to eliminate OTP login verification within 12 months

2026-07-09 22:12:47
Collection

According to The Block, the Hong Kong Securities and Futures Commission (SFC) has issued a circular requiring licensed virtual asset trading platforms and internet brokers to stop using one-time passwords (OTP) for user login and device binding within 12 months, and instead adopt stronger authentication methods such as passkeys and device binding.

This move is due to the fact that in the 2025 Hong Kong cybersecurity incident, phishing attacks accounted for as much as 57%. The SFC also requires institutions to establish monitoring systems for suspicious logins, transactions, and withdrawals, and to promptly notify customers of any unusual account activities. Large brokers must implement the new authentication measures immediately. The SFC emphasizes that if internal controls are found to be deficient and result in customer losses, relevant responsibilities will be pursued.

app_icon
ChainCatcher Building the Web3 world with innovations.