|
|
|
|
|
|
by filoleg
2496 days ago
|
|
|
I don't know if this is true in 2019, but 2 years ago they didn't have a proper 2FA, only SMS verification. The issue was that someone figured out a way to get around that, and they were able to log in and buy a lot of expensive stuff. I reported it to ebay, they reset passwords and set in motion the case to refund me. I removed the perpetrator's address info, changed everything, and two days later it repeated again (because no real 2FA, again). After this happened twice within the same week, i got tired of it, finally got my refund, and closed down my ebay account. You would think that in this scenario, ebay would block the perpetrator by IP or would at least lock the ability to set the delivery address to the same one that the perpetrator used the first time around, but they did nothing of that sort, allowed that person to order more stuff through my account illegally, and left me with a lot of headache. |
|
|
You used to be able to use your PayPal football back in the day (a paypal branded verisign hardware 2FA) or the VIP app but they have slowly been removing that in favour of SMS 2FA to the point where I don’t think you can even add a VIP token if you tried (used to be that you could add one, but they would try their hardest to make you use SMS instead).
If you had it enabled back in the day, it’s still active on your account (both on eBay and PayPal) but you will often find your login in flow disrupted if you still use the “old style” 2FA. (Example on some login pages but not all you are able to login by amending your code to your password. But it’s hit and miss and iirc you can’t use the PayPal app at all if you have 2FA enabled and have to do business via the website.
Note: I’m aware that PayPal and eBay are 2 separate companies now. But for the longest time they acted as one that their application flow feels every similar to each other even still.