How phishing works
Attackers often try to mimic NDAX pages or send urgent messages asking you to sign in or provide codes. They rely on urgency and emotional pressure — slow down and verify before acting.
Warning: Never supply your password or 2FA codes in response to an email or chat. NDAX support will not request secrets.
Verification checklist
- Check the URL carefully for typos or odd subdomains.
- Confirm the HTTPS padlock and certificate details.
- Do not sign in via links in unsolicited messages — use bookmarks or the official app.
If you clicked a fake link
From a secure device: change your password, revoke sessions, and report the page to NDAX support. Preserve screenshots and timestamps as evidence.