Well heres to hoping that PayPal either jumps on board with FIDO2 U2F as it just made release candidate stage with W3C, so in theory, most of the issues that plagued FIDO1 are possibly dealt with and now has a better standard and platform. At least support for HOTP, Google authenticator, something. I plan on canning anything sensitive that don't support FIDO, TOTP, or HOTP. Last year was rough enough and I was in three breaches last year, so really not allot of options left other than ditch all my weak points, of which, PayPal is my largest risk. Fingers crossed, common PayPal, give us a beta FIDO2 U2F with a backup option for HOTP... 😄
... View more