simba in your Start — Mobile and.

simba Two-Factor Authentication - Liga 1 Markets & BCA Virtual Account

Two-factor authentication (2FA) on simba adds a security layer to your account after you log in with your email and password. When you enable 2FA, our system sends a verification code to your registered device—either via SMS or through an authenticator app. You enter this code before accessing your account, trades, or withdrawal functions. This extra step protects your balance and payment methods from unauthorised access.

Open an account

Two-Factor Authentication

Live and
Category: Live Table / Card
RTP: medium; high

We recommend 2FA for all simba users, especially those who deposit large amounts or place frequent trades on Liga 1, Piala AFF, or Champions League markets. The setup takes five minutes and requires no technical expertise. Once enabled, 2FA stays active across all your login sessions—desktop browser, mobile app, and tablet all use the same authentication method.

How Two-Factor Authentication Works on simba

Two-factor authentication requires two separate pieces of information to unlock your simba account. First, you enter your email and password as usual. Second, you verify your identity via a code that only you can access. This means even if someone learns your password, they cannot access your account without your second device or authenticator app. On simba, we support two 2FA methods: SMS-based codes and authenticator apps like Google Authenticator or Microsoft Authenticator.

When you log in with 2FA enabled, simba displays a prompt asking for your second factor. If you chose SMS, we send a six-digit code to your registered phone number. If you chose an authenticator app, you open the app on your phone and copy the current code (which changes every 30 seconds). You paste this code into the simba login screen within the time window. Once verified, you access your account. This entire process takes less than one minute.

Two-factor authentication on simba is optional but strongly recommended for accounts that hold funds or execute regular Liga 1 and Champions League trades.

simba security advisory

SMS-Based 2FA vs. Authenticator Apps

SMS-based 2FA sends a verification code to your phone via text message. Setup is instant—no additional apps required. You receive the code, read it from your SMS inbox, and enter it on simba. SMS 2FA suits players who want simplicity and do not use multiple devices. The downside: SMS codes can theoretically be intercepted if your phone is compromised, and SMS delivery can be delayed during network congestion.

Authenticator apps like Google Authenticator or Microsoft Authenticator generate codes locally on your phone without relying on SMS delivery. Codes refresh every 30 seconds, and you copy them directly from the app into simba. Authenticator apps are more secure than SMS because codes never travel over phone networks. However, they require downloading an app and backing up recovery codes in case you lose your phone. Both methods are supported on simba; you choose based on your security preference and device setup.

Setting Up 2FA on simba

To enable 2FA on simba, log into your account, navigate to Security Settings, and select "Enable Two-Factor Authentication." You choose between SMS or authenticator app. If you select SMS, we confirm your phone number (which you registered during account setup). If you select authenticator app, we display a QR code; you scan it with Google Authenticator or Microsoft Authenticator, and the app generates time-based codes. Once activated, 2FA is mandatory for all future logins.

During setup, simba generates backup recovery codes—typically eight to ten single-use codes. Store these codes securely (printed or in a password manager). If you lose access to your 2FA device (lost phone, broken authenticator), you use a recovery code to regain access to your account. Recovery codes can only be used once, so use them sparingly and only when necessary.

Google Authenticator setup

Recovery codes on simba

SMS code entry screen

Two-Factor Authentication and Payment Security on simba

When 2FA is active, your simba account is protected from unauthorised access. This protection extends to your payment methods. If an attacker somehow breaches your account without 2FA, they could theoretically change your payment method or initiate a withdrawal. With 2FA enabled, they cannot log in at all, so your registered DANA, e-wallet, mobile banking, local payment, and online payment virtual account information remains safe.

Withdrawal Security with 2FA

When you request a withdrawal on simba, our platform requires 2FA verification even if you are already logged in. This additional gate means that even if someone gains temporary access to your account session, they cannot withdraw funds without your second factor. You must provide your SMS code or authenticator app code before simba processes any withdrawal request. This rule applies to all payment methods: e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, and bank transfers via local payment, online payment, e-wallet, and mobile banking.

Withdrawal requests to bank virtual accounts (local payment, online payment, e-wallet, mobile banking) require 2FA before the request is queued. local payment and online payment withdrawals also require 2FA verification. This means your e-wallet funds and bank transfers are doubly protected: your account is secured by 2FA login, and your withdrawal is protected by a second 2FA prompt.

Security note: Never share your 2FA codes with anyone, including simba staff. Our team will never ask for your authentication codes via email, phone, or chat.

Changing or Disabling 2FA

If you need to change your 2FA method—for example, switching from SMS to an authenticator app—log into simba, go to Security Settings, and select "Modify Two-Factor Authentication." You confirm your current 2FA code, choose your new method, and set it up. Your old 2FA method is disabled immediately. You then generate new recovery codes for the new method.

Disabling 2FA requires you to provide your current 2FA code as confirmation. We do not allow immediate disabling without a second factor; this prevents attackers from turning off 2FA and gaining full access. If you lose access to your 2FA device and have no recovery codes, contact simba support. We verify your identity through additional security questions and your registered payment method information before re-enabling access.

1

Open Security SettingsStep 1

Log into simba and navigate to Account Settings, then Security.
2

Select 2FA methodStep 2

Choose SMS or authenticator app. Confirm your phone number or scan the QR code.
3

Save recovery codesStep 3

Download or print your recovery codes and store them securely.
4

Confirm activationStep 4

Enter your 2FA code to complete setup. 2FA is now active on your account.

Account Recovery and Support

If you lose your 2FA device or forget where you stored your recovery codes, contact simba support. Our team verifies your identity by asking security questions you set during account setup, confirming your registered email, and checking your payment method information. Once verified, we can assist with account recovery options, which may include temporary 2FA suspension while you regain access to your device or reset your authenticator app.

Recovery windows vary depending on the time you contact support. During Jakarta, Surabaya, and Bandung business hours, recovery typically completes within hours. Outside business hours, recovery requests queue for the next business day. We maintain English-language support channels for these inquiries via email and chat on our site.

Key takeaways

Two-factor authentication requires a second verification step (SMS code or authenticator app) after you enter your password
SMS-based 2FA is simple but relies on phone networks; authenticator apps are more secure but require an app download
Recovery codes allow account access if you lose your 2FA device—store them securely
Withdrawal requests on simba require 2FA verification, protecting your e-wallet, mobile banking, local payment, and other payment methods
Contact simba support if you lose access to your 2FA device; identity verification is required for recovery

Two-Factor Authentication: Your simba Security Baseline

Two-factor authentication is a simple but effective way to secure your simba account. By requiring both a password and a second verification code, 2FA prevents unauthorised access even if someone learns your login credentials. The setup process takes minutes, and ongoing use adds less than one minute to your typical login time.

On simba, 2FA is optional but strongly recommended, especially if you trade frequently on Liga 1, Piala AFF, or Champions League markets, or if you maintain large balances in your account. The security benefit far outweighs the minor convenience cost. Your DANA, e-wallet, mobile banking, and local payment virtual account deposits are safer when 2FA is enabled because withdrawals require additional verification.

Our services are available only where local law permits. Users are responsible for verifying that access and use comply with their own jurisdiction's law. We do not offer our services in territories where online wagering is prohibited by statute. If you have questions about eligibility or the legal scope of our platform in your region, our support team can provide guidance.

simba editorial team

Account security analyst

We publish this guide to help simba users understand and implement two-factor authentication. Enable 2FA today to protect your account, funds, and payment methods.