Security is a major area of importance for many large-scale websites, including Roblox. We work hard every day to ensure that our users are protected against hacks, scams, and other nefarious schemes that look to steal your account information. Nevertheless, there are some easy ways to take matters into your own hands and actively defend your Roblox account from unwanted intruders. If you follow the advice in this article, your account will be hack-proof in no time.

1. Set Up 2-Step Verification

As part of our ongoing security efforts, we recently introduced 2-Step Verification for all users. This opt-in feature adds an extra layer of security to your account by requiring you to log in with your password and a unique 6-digit code that’s sent to your email address whenever we detect you or someone else is attempting to gain access on a new or unrecognized device. This feature prevents unauthorized access to your account and alerts you via email if someone is trying to log in without your knowledge. You can then take preventative measures by changing your password.

You can enable 2-Step Verification under the Security tab in your Account Settings.

Because this is one of the most effective methods of protecting your account, we highly recommend enabling 2-Step Verification. You can find this feature in your Account Settings under the “Security” tab. For more information, check out our previous blog post here.

2. Beware of Phishing Messages and Scam Sites

While you’re browsing Roblox, you may encounter messages or websites that allegedly give out free Robux, Builders Club subscriptions, or other prizes. Although these websites may look legitimate because they have our logo or other assets, they’re completely fake and violate a number of federal criminal laws. Oftentimes, they ask you to enter your username and password on a fake login page or want you to download special apps. Don’t – this is a scam.

A good rule of thumb is avoiding any websites on Roblox that look suspicious or have special symbols in the link, such as asterisks. Always double check the URL, and never enter your log-in credentials anywhere other than https://www.roblox.com, https://www.roblox.com/Login, or our official mobile app.

Here is an example of what a phishing site might look like.

We take phishing threats very seriously and will take action against them. If someone (even a friend) posts or sends you a message containing a website that claims to reward you with free Robux, Builders Club, virtual items, or cheats, please ignore it and alert our moderation team immediately by using the Report Abuse button. More information about phishing can be found here in a previous blog post.

3. Use a Strong, Unique Password and Don’t Share It With Anyone

One of the simplest things you can do to protect your Roblox account is choosing a password that can’t be easily guessed. We encourage you to follow these guidelines:

Use a non-standard mix of uppercase, lowercase, numbers, and symbols

Use uncommon words or phrases

Change your password regularly to further enhance security

Always use a password that is unique to Roblox

Keep your password in a safe place, and never give it out to anyone

4. Keep Your Account Information Private

We will never ask you for your log-in credentials, and neither should other users. Don’t give anyone your password or any information sent specifically to your email address, such as password reset emails/links or the 2-Step Verification security code. These are for your eyes and personal use only. Think twice before giving someone the “keys” to your account, especially if they promise to give you something in return.

Secondly, while it’s okay to form friendships on Roblox, you should always keep any sensitive personal information to yourself. As a general rule, never share your name, address, phone number, date of birth, or password with anyone on Roblox.

5. Log Out After Playing On Public or Shared Devices

Although it’s generally safer to access your account on a personal computer or device, we realize that there are times when you want to play Roblox at the library or at school. In situations like these, it’s best to log off immediately after you’re done playing so others won’t be able to access your account as soon as you leave your station.

If you think your account has been compromised, please visit our help pages for more information about what to do. Want to learn more about protecting your account? We have additional tips here and even more advice in a previous blog post as well.

Remember, always stay vigilant and keep these simple tips in mind for a safer, more enjoyable experience on Roblox.