Paypal not updating in quicken
I called Verizon about blocking this and they told me there's no way to disable it, the only small consolation is that you will receive a text when it is turned on and when someone logs into it.The text message is supposed to include some identifying details, but the attackers clearly took steps to mask their OS and browser because where these are normally displayed, the text from the attack just said "unknown" and a known malicious IP.No other information is needed, no secret questions, no billing info challenge, nothing.In my opinion, this is way to low of a bar given that text messages to phones cannot be trusted as a "something you have".This is a scenario that I saw play out recently, and although the theft was unsuccessful, I decided to research how it was done.The results bothered me, and showed that a under a fairly common scenario, this type of account takeover is rather simple.
It appears that the number you register with Pay Pal as your "security key" phone number can be different from your account phone number.
The only option Verizon offers to stop this is fully disabling online account access - something most people aren't willing to deal with.
In addition, Verizon does not offer 2 factor authentication, so your account is only as secure as your password OR the details mentioned in the 3rd bullet point above that are required to reset it, disappointing.
To fix this for myself, I left my security key number registered to my cell phone, but changed my account phone number to a Google Voice number (a landline could also be used), and never went through the verification process.
Now, if I try to reset my password, the only options available are a phone call or an email - both of which are protected behind proper 2 factor authentication on my Google account with Google Authenticator as the token.
Here are my recommendations: Security questions are often pretty terrible and consist of options that could be Google searched for many people, and Pay Pal is no exception.