I don't have any particular incident but just come to realize we should probably beef up security. Can be done multiple ways -- Multifactor authentication (MFA) or two-factor (2FA).
Since a lot of us are working hard with our stores and earning money from this, I do believe that security needs to be increased. Once someone gets a hold of your account, what prevents them from changing the payment method or any other details? Someone can take our stores for ransom and threaten to delete all of our stores in one click.
Setting it up is not rocket science. Does anyone logout and login everyday?
@powskers I am one of those of us who have been here awhile (since 2008). I have never had any issues, and I can't recall ever on the old defunct forum, or this new forum, ever reading a post from a member having security issues with their account. If there ever has been, some other forum poster will chime in.
If you are doing your due diligence with your zazzle account info, login p/w etc., you should basically have no problems. Going even further, you can log out, close your browser and clear your cache on a daily/regular basis. If you live in a condo complex/apt complex, make sure your wifi is password protected. Ipad, password protected, same w/computer, phone. Accessing your account on a public computer,such as a library isn't the greatest idea. Or accessing your account anywhere in public....
To the point of using your phone for security login, what happens if someone accesses and/or steals your phone? There is probably no failsafe method.
You assume that we don't work hard or earn money then.... ok....
I get automatically logged out fairly often, and yeah, I'd be annoyed if I had to get a text every time that it happens. I have every confidence that if Z believed their passwords to be compromised, they'd let us know.
Also, I think it's a pretty big assumption to make that everyone who uses the platform has a smart phone...
Z, if you do decide to do this, definitely make it an opt in.
Why Using SMS Authentication for 2FA Isn't Ideal--- SMS Messages are not Encrypted SMS messages are not end-to-end encrypted. Therefore, governments and cellular providers can actually see your messages. The messages are stored in the systems for days while the metadata stays longer. Secondly, SMS messages can be intercepted by hackers. Mobile phone networks connect through a signaling protocol launched before cyber crimes were a huge deal. The signaling system has been breached before and information such as bank verification codes stolen in the past, making it the less secure method of communication or authentication. SMS Spoof Criminals use SMS messages trick users as they have to click on the link to ascertain its authenticity. By the time you click on it, you may have been hacked. SMS Authentication can be Quite Costly SMS authentication depends on providers' services and will charge as per the provider rates. The prices vary among providers and can change depending on the location and time. The costs can quickly pile up if your user base grows exponentially and have to send thousands of authentication code on a daily basis.
