@surplusdealdude Did you not read my post? I logged in with my username and password. After that, I got the warning and request for further information. It stated that it could not verify my security key, yet I didn't put in any security key at that point. I purged my cache, reloaded the browser, tried another browser -- NOTHING! Yes, I too did see the security key login everytime I logged in, but this time I did not. Brilliant! What a great time for hackers and phishers to get into my account. Ping any account with a security key password requirement until it doesn't show the security key screen, then use the social-engineered data. Here's a great idea. When the security key login is down, the respective accounts should NOT be able to log in whatsoever. Those accounts should receive a screen with an estimated time of when the account will be available. This is normal network maintenance etiquette. The reason I have two-factor one-time password (AKA generally "security key") authentication is because it is indeed safer without compromise. I found your argument of security questions being secure as humorous at best. Personal/security questions are NOT as secure as they are static. Also, I guess you didn't see that I'm now abroad, which means that someone can be playing a man-in-the-middle attack. The only safe thing there is two-factor OTP authentication since it rolls, so it's much more secure, ever-changing. Do you wish to speak with VeriSign about this? Perhaps they can enlighten you if you don't believe me, or perhaps you can read this elsewhere. PayPal has been riddled with security problems in the past. Their initial implementation of OTP failed, yet several other companies I've worked for and consulted have had better than five nines of uptime, and I have notified respective clients and customers of downtime prior to any maintenance. By the way, these systems are so embedded and simple, the only maintenance is nearly always with the front-end pluggable authentication modules. That would be PayPal proprietary and broken. If indeed PayPal was working on the system, I should have known about it in advance, and like I said before, not allowed entry during the planned outage. Hey, PayPal, let's talk after you refund my $15 Presto! [b]NB: I will post my success of receiving a refund after I get it. If I haven't posted in a while, either PayPal has deleted my account because they feel I'm a threat or I haven't received it yet. Anyone that posts here will generate an email to myself, so I'll reply back.[/b]
... View more