Safely navigating the Börse Stuttgart Digital Exchange (BSDEX)
An account at the Börse Stuttgart Digital Exchange (BSDEX) should be handled with the same care as a bank account or credit card at your own bank. On this page you can find out how to protect your own account from unauthorized access and what current security warnings there are.
Current security warnings
Phishing calls from alleged employees
BSDEX employees will never ask you for your credentials, especially your TAN. Also, employees will never screen share your computer with you. In particular, sharing your TAN will result in third parties gaining access to your entire account. Never give your login data and your TAN to third parties, especially unknown persons.
Security Tips
Keep login data secure
Store your login data in such a way that third parties cannot access them. Never share your access data (email & password) with third parties, especially not with strangers.
Do not make TAN accessible to third parties
If unauthorized persons gain access to your email and password, the TAN protects you from having the account taken over. For this reason, you should not make the TAN that you receive via your smartphone accessible to third parties. Especially, you should only enter your own number for the phone number.
BSDEX employees do not ask for access data
We will never ask you for your access data. Nor will we ask you for screen sharing. If someone asks for your access data via email or phone, be careful and do not share it under any circumstances.
Keep your computer and browser up to date
Outdated software can more quickly lead to your device being taken over by fraudsters. Therefore, always keep your computer and browser up-to-date to ensure maximum security. Also, an anti-virus tool - especially for Windows devices - can be useful.
In case of doubt contact the support
If you notice any unusual activity on your account, receive suspicious calls or emails you do not trust, please contact our support at support@bsdex.de as a precaution.
Browse in secure networks
Logging into public networks, such as the wifi in a hotel, restaurant or train station, always creates a certain security risk. Avoid logging into financial apps like BSDEX's on public networks to ensure more security.
How to avoid common Phishing attacks
Phishing usually refers to emails that pretend to be another person. In particular, phishing emails are sent in the name of well-known companies in order to obtain users' access data. Phishing attacks also occur via telephone calls. In this case, the scammers pretend to be employees of a company in order to obtain the victims' access data. This article tells you how to recognize phishing attacks and prevent them.
How BSDEX is working on making the platform safe
For banks and insurance companies in particular, security is considered one of the most important factors. The more securely one's assets are stored with a company, the greater the trust. Security in the custody of cryptocurrencies is probably even more important than with traditional banks. BSDEX is working every day to make the platform even more secure.
Why the KYC is so important for your account security
Phishing usually refers to emails that pretend to be another person. In particular, phishing emails are sent in the name of well-known companies in order to obtain users' access data. Phishing attacks also occur via telephone calls. In this case, the scammers pretend to be employees of a company in order to obtain the victims' access data. This article tells you how to recognize phishing attacks and prevent them.The KYC procedure is often perceived as annoying in the crypto world. Yet it is quite normal to verify oneself when opening an account. The verification of one's own account, i.e. the assignment of the account to a specific person, with the help of official documents such as the ID card, protects our customers, for example, in situations where fraudsters try to gain access to other people's accounts. You can find out what else a KYC is good for in the following article.
High security due 2FA
Multifactor authentication has significantly increased security on the Internet. While it used to be enough to simply hack an account's password, thanks to 2FA or 3FA a fraudster can't do anything with your account even if he has the access data. This is because further authentication - for example, a code sent by SMS - is required. You can find out more about multi-factor authentication in our Academy.
Why Anti Money Laundering (AML) is important
In every larger company there are people whose job it is to prevent money laundering in their own company. Money laundering can also be done by customers, for example, by exchanging money in cryptocurrency and sending it to unknown wallets. BSDEX takes several precautions to prevent money laundering. You can learn why this is important for your security in this article.
How BSDEX secures your crypto. Secure custody through Boerse Stuttgart Digital Custody
Cryptocurrencies have only been around for a little over 10 years. Accordingly, the technology is new and accordingly, news is going around the world talking about lost cryptocurrencies. The Boerse Stuttgart Digital Custody holds the cryptocurrencies of BSDEX customers in custody. They are experts in their field and build a Fort Knox of crypto safekeeping. So you can sleep safe while we keep your cryptocurrencies in custody.
Known scams that are currently being used frequently
Romance scam (pretending to be in love in order to obtain financial benefits)
- You have met someone on the Internet or on social networks
- At first, an exceptionally cordial acquaintance seems to develop
- After some time, this person claims that they or people close to them have got into financial difficulties and urgently need your support
- You are repeatedly asked for help and emotionally pressurised into making transactions without ever having met this person in person
- You are offered a supposedly unique opportunity to get to know an extraordinary person and you don't want to miss out on it
Fraud scam "Pretence of profit prospects"
- You are "advised" by a third party unknown to you personally
- You are allegedly entitled to large sums of money or winnings
- You are asked to make a deposit, tax payment, security deposit or similar as proof of identity, for verification or to unlock the funds to which you are allegedly entitled
- You are repeatedly contacted and asked to make investments and transactions
- You are presented with forged registration documents from the provider, certificates or guarantees for the money to which you are supposedly entitled. If applicable, trustworthy, established providers as well as authorities or other official institutions or their representatives are also named as parties involved - however, you have never been in contact with them regarding this matter
- Registration with the third-party provider requires only a few details and no procedure is used to verify the identity of customers in accordance with the legitimisation regulations for banks and financial service providers
The third-party provider claims that it has been "successfully" established on the market for years or that it cooperates with BISON, although this cannot be independently verified
- You have discovered a third-party provider that promises you unusually high returns
- The third-party provider offers you various "investment plans" in which you apparently only have to pay in a minimum amount and the provider "guarantees" you certain profits in return
- The third-party provider brags about its "professional trading", "arbitrage trading", "AI trading", "forex trading" or "cloud mining" without pointing out any risks
- You are offered a supposedly unique opportunity and don't want to miss out on it, even though there is very little or no independent, reliable information on the third-party provider's product
"Lucrative job offer" scam
- Faking a job offer in order to obtain financial benefits, commit identity theft and pass on payments from third parties
- You have been made aware of a lucrative job offer with great earning potential on the internet or through acquaintances.
- For example, they are looking for a supposed accountant or a finance manager with a rewarding income for a job that requires little effort
The job advertisement sounds very serious at first, and an online interview also takes place
- You are asked to provide the supposed employer with your ID details by email for the recruitment process.
- As an employee, you are supposed to pay your new employer around 250 euros for your work equipment
- Payments are received in your account, which you are supposed to transfer to other accounts
- You are supposed to open accounts in your own name with banks or other financial service providers, but leave access to the supposed employer
In reality, this is what is known as a job scam, whereby the victim of the scam is made to believe they have a legitimate job
General indications of typical fraud schemes
- Attempts are made to access your device as part of financial services via remote maintenance software such as AnyDesk or TeamViewer
- Crypto transfers are advertised with sponsored articles and adverts relating to the alleged pre-sale of a "revolutionary" coin
- It is not a (strictly) regulated third-party provider The provision of financial services is subject to authorisation in Germany or the EU for good reason to protect customers
- Fraudsters create fake websites, some of which appear elaborate, with a wide range of fictitious trading opportunities
Information from BaFin on how to recognise dubious providers and fraudsters
https://www.bafin.de/DE/Verbraucher/GeldanlageWertpapiere/UnserioeseAnbieter/unserioese_anbieter_erkennen_node.html https://www.bafin.de/DE/Verbraucher/GeldanlageWertpapiere/verbraucher_soziale_medien.html https://www.bafin.de/DE/Verbraucher/Aktuelles/verbraucher_betrug_unter_dem_namen_der_bafin.html