Security Best Practices
Your funds are only as safe as your security habits. Follow these guidelines to protect your AceBot wallet.How AceBot Protects You
Encrypted Private Keys
Your private keys are encrypted with AES-256-GCM — the same encryption used by banks and governments. Keys are encrypted before storage and can only be accessed with your account.Keys Never Shown in Chat
Private keys are never displayed in Telegram messages. This prevents accidental exposure through screenshots or message history.Auto-Delete Sensitive Messages
When you import a wallet by pasting a private key, your message is automatically deleted to prevent it from remaining in chat history.Token Security Scanning
AceBot integrates with GoPlus to scan tokens for:- Honeypot contracts (tokens you can’t sell)
- Rug pull indicators
- Malicious contract code
- Unusual trading restrictions
GoPlus security scanning is enabled by default. You can toggle it in Settings, but keeping it on is strongly recommended.
Your Security Responsibilities
Never Share Your Private Keys
Your private keys give full control over your funds. Never share them with anyone, including:- “Support” staff in DMs
- “Admins” claiming to help
- Websites asking for keys
- Anyone, ever
Verify Bot Identity
Before interacting with AceBot, confirm you’re using the real bot:- Official bot: @AceBotApp
- Official community: Check the verified community link
Start with Small Amounts
When trying new features or trading new tokens:- Start with a small test amount
- Verify the transaction works correctly
- Scale up once you’re confident
Back Up Your Wallet Access
Your AceBot wallet is tied to your Telegram account. Protect your Telegram account:- Enable two-factor authentication (2FA) on Telegram
- Use a strong, unique password
- Never share your Telegram login code
Be Cautious with Token Links
Token contract addresses can come from anywhere. Before trading:- Verify the contract address from official sources
- Check if GoPlus flags any security issues
- Research the token on DEX Screener or similar platforms
Security Settings in AceBot
GoPlus Security Toggle
Enable or disable token security scanning:- Tap ⚙️ Settings
- Find 🛡️ GoPlus Security
- Toggle on (recommended) or off
Wallet Access Through Secure Portal
If you need to access your private keys (for migration or backup):- AceBot provides a secure external portal
- Never type keys directly in Telegram
- Access keys only on a secure, private device
Common Scams to Avoid
Fake Support Scams
Fake Support Scams
Scammers pose as AceBot support in your DMs. They may:
- Ask for private keys “to fix an issue”
- Send links to fake websites
- Claim your account is suspended
Phishing Bots
Phishing Bots
Fake bots with names like “@AceBot_Official” or “@AceBotSupport”:
- May look identical to the real bot
- Ask you to “verify” your wallet
- Steal any keys you enter
Honeypot Tokens
Honeypot Tokens
Tokens designed to trap your funds:
- You can buy but not sell
- High tax on sells (90%+)
- Contract can freeze your tokens
Rug Pulls
Rug Pulls
Developers abandon projects after:
- Draining liquidity pools
- Dumping their token holdings
- Disabling contract functions
What to Do If Compromised
If you suspect your wallet is compromised:Transfer Remaining Funds
If any funds remain, transfer them to your new wallet as quickly as possible.
Security Checklist
- 2FA enabled on Telegram
- Using official bot @AceBotApp
- GoPlus security enabled
- Never shared private keys
- Started with small test amounts
- Verified token contracts before trading