Login safely — avoid phishing and device lockouts
Treat login pages like banking: check the URL bar, refuse “mirrors”, and never share OTPs with strangers.
Phishing thrives in high-intent niches. Attackers clone login screens, add urgency (“account banned in 1 hour”), and harvest OTPs. Always confirm HTTPS, correct spelling, and certificate issuer before entering credentials.
Switching phones? Log out of old sessions where possible and re-bind device trust flows if the app offers them. Sudden country or emulator changes can trigger temporary risk holds — that is normal fraud prevention, not a personal insult.