How do I protect myself from phishing?
1. Use only the mirrors from trzm.cc
2. Enable 2FA for your account to prevent unauthorized access and theft of your coins.
3. Change your password/PIN regularly and keep it secure.
Download Encryption Software
This is a free (though you can donate or just choose $0 when prompted) set of encryption packages and tools.
For macOS, check out GPG Suite.
You can also add PGP to Linux.
The first step is to get Kleopatra installed on your computer.
If you are using Windows, download and install Gpg4winThis software bundle contains Kleopatra.
If you're using Linux, check out Kleopatra on KDE.
If you're on a Mac, you can look into GPGTools. Note that they don't use Kleopatra; you'll have to use GPG Keychain and GPG Services instead.
The interface is significantly different.
Creating Your Key Pair
Now it's time to create your key pair. If it's your first time running Kleopatra,
and you haven't created a key pair yet, your screen should look like this:
Click "New Key Pair" or go to "File" and then "New OpenPGP Key Pair."
Enter your details, or the persona/username you intend on signing the messages with.
Optionally, encrypt the key with a passphrase (password).
If you use a passphrase, it will be required to sign messages you send using this key pair.
This will ensure no one else can send messages as you, using your key, except for you.
After generating the key pair, and entering the password (if selected),
you will see a success message, and the key pair will be added to the certificate list in Kleopatra.
Export PGP Public Key
Click with the right mouse button on the created key pair and click on export and open it with Notepad or a Textdocument, for example.
Activate PGP 2FA
Click on Profiles in the Market and on "PGP/2FA settings" on the left menu.
Enter your generated PGP public key and click on "update".
A PGP message should be displayed.
If the field remains empty, wait 5-10 minutes and try again, as it may take some time for newly generated PGP keys.
Open Kleopatra again, click on Notepad, and paste the PGP message (make sure to copy the code correctly).
Then, click on "Decrypt / Verify Notepad."
After entering your password, the message should now have been decrypted.
Enter the "PGP Verification Key" in the field and click on Submit.
PGP 2FA has been activated
If it now appears like this, 2FA has been successfully activated.
You must decrypt a PGP message every time you log in.
This means that nobody but you can log into your account.