June 2025
⚠️ Security Alert – Fake site finary.store
A fraudulent website impersonating Finary has recently circulated. It was distributing a fake "Finary Desktop" application that actually contains a Trojan horse.
✅ Do not download any files from this site.
✅ Finary does not offer any desktop application: only our web app and mobile app are official.
🔒 No data breach has been detected on Finary’s infrastructure. The emails used originate from databases compromised elsewhere.
You can also check if your email address has been exposed in a data breach via the site haveibeenpwned.com.
👉 If in doubt:
• Do not click on any suspicious links
• Forward the email to [email protected]
• Mark it as Spam
• Change your password and enable 2FA
Good to Know :
How to Recognise a Fraudulent Email
Certain signs can help you identify a phishing attempt. Stay alert if you notice any of the following:
Suspicious sender address:
The email does not come from an address ending in@finary.com.
Examples to ignore:[email protected],[email protected], etc.Unusual requests:
The email asks you to:Provide your password
Share your two-factor authentication (2FA) code or recovery codes
Download a file or an application
Alarmist or urgent tone:
The message pressures you to act quickly, for example by claiming suspicious activity or an imminent suspension of your account.Suspicious links:
The links in the email do not redirect tofinary.com.
Tip: hover your mouse over the link (without clicking) to see the real URL.
What Finary Will Never Do
As a reminder, Finary will never ask you (by email, SMS, or phone) :
Your password
Your 2FA codes or recovery codes
To download an app from outside our official platforms
Our only official channels are:
The web app: app.finary.com
The mobile app, available on the App Store and Google Play
Best Practices. :
Protecting your data and the accounts you use daily is absolutely essential. Here's a checklist our security team has put together to help you use Finary and all the web resources at your disposal with peace of mind.
Never Reuse Your Passwords
Compromising just one of your accounts can jeopardize others protected by the same password. We can't stress this enough: NEVER use the same password twice.
Use Complex Passwords
We strongly recommend using a password manager, which will generate and remember passwords for you. Most can be used on your computer and mobile device. Leading options in the field include 1Password and Dashlane.
Set Up Two-Factor Authentication (2FA) Whenever It's Available
With 2FA, you'll need to enter an additional code generated by a third-party app (e.g., Google Authenticator or Authy) to access your accounts. This is a second layer of security that only you have, in case your password is compromised.
When you have the choice, prefer authentication apps, passkeys, or physical security keys over SMS, and safely store your backup codes.
💡 Good to know: You can activate 2FA on your Finary account in less than 60 seconds; here's how to do it.
Regularly Install Your Security Updates
Always keep your operating system, browser, and other software - including on your mobile - up to date. This helps avoid vulnerabilities.
Do not reply to fraudulent emails
Immediately report the message as spam or phishing in your email inbox, this is a highly effective way to help block large-scale attacks quickly.
Use Antivirus Software
They help scan your hard drive and eliminate hidden malware. Bitdefender and Malwarebytes are solid options.
Avoid Public or Unknown Wi-Fi Networks
If you must use them, avoid performing sensitive operations without a VPN. Prefer using your smartphone's connection sharing.