DEFENCE IN DEPTH

Security

A concrete account of the application and operational controls currently implemented, their limitations, and the security responsibilities retained by every user.

HashedPassword storage

CSRFProtected state changes

PrivateKYC file storage

Role-basedAdministrator access

IDENTITY

Account and session protection

Password hashing rather than plaintext storage
Verified-email onboarding
Replay-resistant verification links
Secure session-cookie configuration
Role checks on protected routes

APPLICATION

Request and data controls

CSRF validation on state-changing forms
Server-side input validation
Parameterized database access
Database transactions around balance-changing actions
Protected KYC document delivery

OPERATIONS

Financial safeguards

Manual administrator review of funding requests
Pending withdrawals reserve available balance
Approved payouts require a transaction hash
Package purchases store immutable term snapshots
Reward distribution is restricted to a CLI scheduler

ADMINISTRATION

Privileged access

Administrator routes are separated from client routes. Sensitive actions use role protection and can produce audit metadata for later investigation. Access should follow least-privilege principles.

USER SECURITY

What every user must do

Use a unique password and protect email access
Verify network and destination before transferring USDT
Never disclose seed phrases, private keys, or codes
Sign out on shared devices
Report unexplained account activity immediately

INCIDENTS

How security events should be handled

ContainRestrict affected access and preserve evidence.
InvestigateReview sessions, financial records, and administrator events.
CorrectResolve the weakness and reconcile affected records.
CommunicateProvide an accurate impact and status update.

EXPLORE THE PLATFORM

See the operating system from the inside.

Create a free account without a funding obligation and review the available controls.

Open free account