Kraken Ramps Up Security With Enforced 2FA and Dedicated Lab

Crypto exchange Kraken is embarking on a security drive, introducing compulsory two-factor authentication and a dedicated security lab.

AccessTimeIconMar 28, 2019 at 6:15 a.m. UTC
Updated Sep 13, 2021 at 9:01 a.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

Cryptocurrency exchange Kraken has introduced two new initiatives aimed at enhancing client and industry security.

Firstly, the firm's recently appointed chief security officer, Nicholas Percoco, announced in a blog post on Tuesday that the exchange has launched compulsory two-factor authentication (2FA).

Kraken has had 2FA as an option for users since its launch in September 2013, but now they will be asked to enable the feature upon their next login, Percoco said, adding that the prompted options for 2FA are Google Authenticator and YubiKey currently.

Secondly, the exchange has formed Kraken Security Labs, aimed to improve the security of both its own products and the “entire cryptocurrency ecosystem” by performing "vulnerability" research on third-party products, such as hardware and software wallets.

Percoco said his vision for Kraken is to “expand upon the strong, industry leading security foundation,” and utilize advanced security products such as threat intelligence, behavior analytics and adversarial deception techniques, and incorporate them into the exchange’s present and future products.

The CSO further said that Kraken will keep developing with other client-facing security enhancements in the near future. The exchange’s product management team will provide “constant improvement into 2020 and beyond” through its security features roadmap.

“While this roadmap is not made public, you’ll be hearing about security enhancements and upgrades as they are released and made available to you," Percoco said. "Like most features similar to 2FA, you’ll need to enable them to take advantage of the added security, so please be sure to take action when you’re prompted to."

Nicholas Percoco image via Kraken 


Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk offers all employees above a certain salary threshold, including journalists, stock options in the Bullish group as part of their compensation.

Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to to register and buy your pass now.