Keeping your Uphold Wallet secure starts with how you sign in. This article walks through practical steps and best practices to protect your account from unauthorized access and phishing attempts.
Before you log in — preparation
- Use the official Uphold website or app. Bookmark the official URL in your browser and use it instead of clicking links in emails or messages.
- Update your device and browser. Install the latest security updates to reduce exposure to known vulnerabilities.
- Choose a strong, unique password — use a password manager to generate and store it securely.
Step-by-step login (web)
- Open your browser and navigate to the bookmarked Uphold site.
- Click Sign In and enter your email address and password.
- If prompted, complete any CAPTCHA or security challenge required by Uphold to confirm you're human.
- When challenged for additional verification, follow the on-screen steps for two-factor authentication (2FA) or other security checks.
Two-factor authentication (2FA)
2FA adds a second layer of security. Uphold supports authenticator apps and may support SMS in some regions. We recommend:
- Use an authenticator app (e.g., Authy, Google Authenticator) rather than SMS when possible.
- Store backup codes in a secure place (not in an email or on your phone's home screen).
Recognize and avoid phishing
Phishing tries to trick you into giving away login details. Watch for:
- Emails or messages urging immediate action or claiming account compromise — verify by visiting the official site directly.
- Domains that look similar to the real site (typos or extra words). Check the URL carefully and inspect the TLS padlock in the address bar.
Safety tip: Never paste your private keys or recovery phrases into any website or message. Uphold will never ask for your private keys or full recovery phrase over email.
Using password managers
Password managers make strong unique passwords practical:
- Generate long, random passwords and store them in a reputable password manager.
- Enable biometric unlock on your manager for convenience while keeping security high.
When something goes wrong
- If you suspect unauthorized access: change your password immediately and revoke active sessions from your Uphold account settings.
- Contact Uphold support through the official support portal — don't trust support contact details sent in unsolicited messages.
- If you've revealed your recovery phrase or private keys, assume the funds are at risk and move assets to a new wallet only after securing the new wallet.
Quick checklist
- ✅ Use official Uphold URLs and app stores.
- ✅ Use a strong, unique password stored in a password manager.
- ✅ Enable authenticator-based 2FA.
- ✅ Keep backups and recovery codes in a secure offline location.
- ✅ Review active sessions and devices in account settings regularly.
Following these steps reduces the most common risks and helps ensure your Uphold Wallet remains under your control. Stay vigilant and make small security improvements regularly.
View official Uphold help