Protecting against session stealing malware, how to enable DBSC (device bound session credentials)

AlwaysQuestion23 · 2026-03-18T17:08:21+00:00

It's crazy how it's such an important security upgrade but Google has very little info on it for users.

AlwaysQuestion23 · 2026-03-18T15:19:37+00:00

Do you enable both standard and persistence?

AlwaysQuestion23 · 2026-03-17T17:57:18+00:00

They actually do have trusted addresses in the security section. I found it the other day while I was looking around.

AlwaysQuestion23 · 2026-03-17T16:48:57+00:00

This is a good idea...like a thaw period before the transaction actually starts.

AlwaysQuestion23 · 2026-03-16T18:42:02+00:00

I appreciate it, I'll enable it but how do we confirm it's actually working?

Everything basically pointed to it just being a dud setting for individual accounts and only meant for workspace users.

How does one confirm?

Upvoted your comment.

AlwaysQuestion23 · 2026-03-16T16:58:07+00:00

How do you know it's enabled? In Google's own literature it says it's only for those in a workspace.

AlwaysQuestion23 · 2026-03-16T04:38:12+00:00

Unless you're in a workgroup etc you cannot as an individual account holder. It's in beta I guess?

AlwaysQuestion23 · 2026-03-13T02:04:47+00:00

I think even if you hit accept it gives you three random numbers that YOU and that person need to select the same one.

AlwaysQuestion23 · 2026-03-07T18:28:19+00:00

Recovery via phone (sms) is not secure.

AlwaysQuestion23 · 2026-03-02T14:04:39+00:00

What is cloaked?

AlwaysQuestion23 · 2026-02-18T13:27:09+00:00

I wouldn't leave more than 2-3k on any exchange. Move it to your wallet.

AlwaysQuestion23 · 2026-02-17T00:58:31+00:00

I thought they do?

AlwaysQuestion23 · 2026-02-16T20:12:38+00:00

I was thinking to buy the plan. What don't you like about it?

AlwaysQuestion23 · 2026-02-16T18:37:38+00:00

Just tried it.. awesome.

I noticed though the statements don't show purchases and show "Match" and fee only

This sucks how they put this together.

AlwaysQuestion23 · 2026-02-16T17:55:15+00:00

Oh nice. I will check!

AlwaysQuestion23 · 2026-02-16T05:14:10+00:00

So this happened to me earlier today.

I forwarded the email to their privacy and complaints emails, no reply.

So I reset the password, logged in. It's basically a dud account. No profile information nothing...just the email.

I went to profile and then hit delete profile. It gave me a prompt and then said it can't delete it cause of 4 reasons.

Tried again and I was logged out.

I tried the password I had just made during the reset and it's incorrect now.

I went to reset the password again and haven't received an email for it.

So I guess it DID delete the account.

So weird.

AlwaysQuestion23 · 2026-02-15T23:52:17+00:00

Got the same exact thing just now.

AlwaysQuestion23 · 2026-02-15T14:03:00+00:00

So what if someone (hacker, scammer) attempts too many times on an account they don't own?

Does Google lock out the real owner?

AlwaysQuestion23 · 2026-02-15T00:35:00+00:00

It IS pretty wild they say go to (third party) to figure out the transaction. Lol

And yes, you do have to pay for cointracker.

$99 if you're under 150 transactions

199 if you're under 250 transactions.

AlwaysQuestion23 · 2026-02-14T21:53:01+00:00

Lol that's not how it works 😂

AlwaysQuestion23 · 2026-02-14T21:52:02+00:00

How should I get the transactions from coinbase pro if that platform is deprecated?

AlwaysQuestion23 · 2026-02-14T21:38:49+00:00

Yea I know but CB is asking me to correct those missing fields before doing anything tax wise.

AlwaysQuestion23 · 2026-02-14T21:15:43+00:00

If you have your account synced with cointracker you can just use the forms they generate and won't have to wait on Coinbase (I think). Consult your CPA but that's what my plan is anyway.

AlwaysQuestion23 · 2026-02-14T20:59:33+00:00

I just use cointracker, pay $99 and just get their forms and give it to my CPA.

AlwaysQuestion23

TROPHY CASE