Japanese Broker Rakuten Securities to Change MT4 Login Method to Enhance Security

MetaTrader 4 remains a cornerstone platform for retail forex and CFD traders, but its legacy single‑password model has become a target for cyber‑criminals. Across the industry, brokers are grappling with credential‑stuffing attacks, phishing schemes, and regulatory pressure to strengthen authentication. By shifting to a system that issues one‑time, random passwords, Rakuten is pre‑emptively addressing these vulnerabilities, echoing a broader move toward dynamic credentialing in financial technology.

Rakuten's rollout follows a two‑phase timeline. From February 28 2025, clients will receive randomly generated passwords each time they request access to any MT4‑related account. After February 28 2026, the traditional MT4 login will be locked, forcing users to log into the Rakuten FX‑WEB portal, navigate to My Page, and request a new MT4 password. This extra step adds a layer of verification while keeping the user experience within a familiar web interface. Traders accustomed to direct MT4 access will need to adjust their workflow, but the process is streamlined through the broker’s existing online dashboard.

The initiative positions Rakuten at the forefront of Japan’s evolving broker security landscape. Japanese regulators have signaled heightened expectations for cyber‑resilience, and competitors are evaluating similar measures. By adopting dynamic passwords early, Rakuten not only mitigates immediate security threats but also builds trust with institutional and retail clients wary of data breaches. The approach may set a benchmark, prompting other regional brokers to replace static credentials with more robust, user‑controlled authentication mechanisms, ultimately raising the security baseline for the entire market.