PayPal Community

j_a_s · ‎Aug-26-2020

I've been dealing with customer support all day over this issue and they say they can do nothing but I want to raise it here as well since it's a major security flaw. Paypal is a financial site and therefore security controls should be very strong. I always log out whenever I complete a transaction and I never click the "stay logged in" button that's always presented. Now, every time I log in, I get an email saying "We've made it easier for you to check out with PayPal. Since we recognize this device, we'll automatically log you in so you can skip typing your password at checkout! ... If this is a shared device, or you don't want us to automatically log you in, we recommend that you turn this feature off." I go in and manually turn the feature off. Then the next time I log in to make a transaction, I get the same email again, the feature is re-enabled again, and I have to go in to manually turn it off again. This is totally unacceptable. I'm the only one who should be able to determine if my device is trusted and and if I want to enable auto login. I was told that there's nothing they can do and that I'll simply have to manually disable the feature every time. This is a major security flaw and it's a big deal. I was told that my concern has been escalated but I'm posting this here in the hopes of raising the visibility of this issue. Thanks.

jimfrankfort · ‎May-18-2023

PayPal sends me email telling me that it recognized a device I'm using and is leaving me signed in (to make it easier for me to use). It gives me a link to turn this feature off for the "recognized device". I would like to disable that feature....so PayPal doesn't automatically add these 'recognized devices' to a trusted device list. Why? I think it is more secure to enter a password or one time code for each transaction. It is a PIA to need to turn it off for each device. Thx.

PayPal_Bindu · ‎May-22-2023

Hello @jimfrankfort,

Welcome back to our community help forum and thank you for your post!

I understand your concern about the auto login feature in your device. You can turn this off by following the steps below :

Go to Settings.
Click Security.
Click Update next to "Auto Login."
Click Turn off.

You can also try to update the 2 step verification feature in your device. See our article about 2 step verification feature.

I hope this information helps,

Bindu

If you feel this or any other post helpful, please enrich the community by giving kudos or accepting it as a solution.

Littlemiss28 · ‎Aug-20-2023

I have turned this off at least six times. I have reported it to security, I reported it to the community, and I’ve complained about it in the chat online with a real person. PayPal is not paying enough attention to this issue, because this has been going on now for several years. I don’t want them to ever let my device auto connect. They never give me the option to turn it on. They turn it on automatically and then I have to take steps to actually turn it off. For me on my device this is a real security issue! I know I’m not the only one man I wish PayPal would pay more attention and resolve this issue correctly and securely.

princessscobra · ‎Aug-20-2023

You obviously have not read this thread! We have ALL turned off auto-login. Many many times. PayPal STILL HAS NOT CHANGED THE SETTINGS. Every time we use PayPal for payment, we get the message that we are now enrolled in “auto login”. We want the option to TURN AUTO LOGIN OFF PERMANENTLY. Honestly, this should not even be a thing!

denniz1 · ‎Nov-05-2024

to the moderators

you must know this security hole has been left open for a reason why reply with rubbish isn,t it better to just not reply

jimfrankfort · ‎May-24-2023

Thanks. That turned off autologin for the device I was using. HOWEVER, when PayPal recognizes a new device, I'm pretty sure it will enable autologin for that device. I can turn it off, but I'd rather turn off auto-recognizing devices. Is there a way to do that? thx again.....jim

PayPal_Bindu · ‎May-25-2023

Hey @jimfrankfort,

Auto login set up will get turned off automatically on any devices you haven't used in a while. You can try to turn this feature off by managing the devices and browsers you use to log into your PayPal account in the security page by clicking the settings tab in your PayPal account. Here's how :

Click the Settings icon next to "Log out."
Click Security.
Click Edit next to "One Touch for auto login at checkout."
Click Log out per device or Turn off One Touch on all devices.

Alternatively, you can also reach out to our team through the available contact options at the bottom of PayPal page to get this option out for all devices.

Best wishes,

Bindu

If you feel this or any other post helpful, please enrich the community by giving kudos or accepting it as a solution.

princessscobra · ‎May-30-2023

Every single time I use Paypal, the program sends me an email saying that I don't have to login anymore since I'm using a "trusted device". Then I have to go out and disable this feature. It's just stupid that Paypal doesn't let you stay permanently logged out if that's what the user wants. And I want.

8lackie · ‎Jun-06-2023

AGREED!

Littlemiss28 · ‎Aug-20-2023

This does not resolve the issue of PayPal, turning it on without our consent, though. I would like it to not be turned on automatically, without my consent! This has been reported many times over the years.

PayPal Community

Major security flaw - the system keeps re-enabling auto login even after I keep turning it off

Haven't Found your Answer?