The platform released a major upgrade to its two-factor authentication system on August 10, 2025, introducing several new security features. The upgraded system maintains compatibility with all standard TOTP authenticator applications while adding enhanced protection layers. New features include: backup authentication codes (10 single-use codes generated at 2FA setup, stored offline for account recovery), a PIN delay feature that temporarily locks login attempts after a configurable number of failed 2FA entries (preventing automated brute-force attacks over Tor circuits), and per-action 2FA requirements that mandate fresh authentication codes for sensitive operations including withdrawal requests and account settings changes. The 2FA upgrade also addressed a previously documented attack pattern where adversaries would attempt to time out sessions and intercept the authentication flow. The new implementation uses cryptographic session binding that ties authentication tokens to the specific Tor circuit, significantly reducing the viability of session-based attacks. Migration to the new system required no user action � existing 2FA configurations continued to work during and after the upgrade. Users who had not previously enabled 2FA were presented with a prompt encouraging activation, accompanied by documentation explaining the security benefits. Adoption rates increased significantly following this nudge, with community reports suggesting 2FA usage rose from approximately 62% to over 80% of active accounts within the month following the upgrade.
Stay informed on our News Index. For verified access links visit Enter Marketplace.