[mcv]

No, my child was playing the game. The game is not my banking app, and even my banking app requires authorization on top of clicking a button. Merely clicking a button in a game is not financial authorization, and it's harmful to accept this as if it's normal. It's not.

I'm not hostile, I'm just explaining that playing a game is not the same thing as authorizing a financial transaction. I don't understand why you insist that they are.

An online financial transaction should at the very least require a password or pin code. Preferably a redirect to my bank where I authorize the transaction through my bank's authorization mechanism (which uses 2FA). I go out of my way to disable everything that doesn't do that, including pin-less NFC payments on my bank card. At the time, I'd also set Google Play Store to always require a password (which should really be the default), and yet it executed a payment without it.

To suggest that a simple button click in a game played by children should be enough to access my money is ridiculous.

[rentalord]

Sure I mean it would be better if the entirety of online transactions was different. Could be vastly improved. That’s not how it is today though.

[mcv]

It's how most of my online transactions are. When I buy online, I'm redirected to my bank's website to authorize the transaction. That's exactly how I want it. Only Google and Amazon and a few others require less secure transactions for some reason. I don't like that.

[rentalord]

Most of your EU/NL transactions perhaps. None of your US transactions. It’s shitty but it’s true.

[mcv]

To my big frustration, yes. I'd like international payments to use a similar system. It's why I don't buy from Amazon and avoid other webshops that don't support this. Fortunately Steam and GOG.com do. As do all the Dutch webshops. But Lego.com unfortunately does not.