Google/Ebay issue--freaking out a little

[Rhotchkiss]

I also have PayPal only linked to a credit card; it is not linked to a bank account. This way if PayPal gets hacked, they can only charge a credit card and I can dispute it. This sucks when I do deals on BST via friends and family bc I have to pay the 3% fee (or negotiate it), but it’s cheap insurance and I don’t mind, knowing nobody can get into bank accounts

[MikeGarcia]

Quote:

Originally Posted by Rhotchkiss

I also have PayPal only linked to a credit card; it is not linked to a bank account. This way if PayPal gets hacked, they can only charge a credit card and I can dispute it. This sucks when I do deals on BST via friends and family bc I have to pay the 3% fee (or negotiate it), but it’s cheap insurance and I don’t mind, knowing nobody can get into bank accounts

I'm missing how you move $ from when you are paid via PayPal , then into your non-linked bank account..? Or do you not even do that ?..

..

[Rhotchkiss]

Quote:

Originally Posted by MikeGarcia

I'm missing how you move $ from when you are paid via PayPal , then into your non-linked bank account..? Or do you not even do that ?..

..

Great question. I rarely sell, but when I do, I prefer a check for that exact reason. The few times I have sold AND the buyer sent it to my PayPayl account, I either flipped it to my brother, who then wrote me a check, or if it was a smaller amount, I just kept it in PayPal until I bought something else. Admittedly, my way is not good for sellers.

[thecatspajamas]

Is it possible that when you intended to log into your existing eBay account using Google, you inadvertently created a new eBay account/username instead? And then not realizing you were logged into this new account rather than your usual eBay username, proceeded to place bids using the newly-created username rather than your usual one, unaware that you were doing so?

[chalupacollects]

Never log into ebay or any financial institution via Google, Facebook etc. You really don't want those folks gathering any further intel about your personal stuff than necessary.

Always go straight to the site yourself...

If you think for one minute those folks aren't building a profile on you, you are wrong... also if they get hacked chances are your data goes to the hackers...

[nolemmings]

Quote:

Originally Posted by thecatspajamas

Is it possible that when you intended to log into your existing eBay account using Google, you inadvertently created a new eBay account/username instead? And then not realizing you were logged into this new account rather than your usual eBay username, proceeded to place bids using the newly-created username rather than your usual one, unaware that you were doing so?

I don't see how, and I assume I would be allowed to create my own username, which didn't happen here.

[drcy]

If you have your original password account, and then sign in via your google you are logging into/creating a new account (using your google info)?

You have two ebay accounts: your old and a new via google.

[steve B]

The way Paypal does two factor authentication is extremely poor.

We had ours compromised a couple years ago, not via the Paypal or Ebay sites, but through email.
Using the email, the email password was changed, then the paypal password, all via the "I forgot my password" link.
Then they sent two payments to some foreign country.
We changed everything back, contacted the bank, which said they had to let the fraudulent charges go through before they could cancel them??
Filed complaints with Paypal first, and in less than 12 hours they denied them saying that me sending $400 to zimbabawe or wherever and twice in the same day was "normal activity"

So passwords changed, email tied to the account changed, 2FA set up. None of it done from the computer as we suspected a keylogger that the anti malware/virus software didn't catch (and still hasn't so I haven't been able to trust the computer for 2 years... )

A month later, the same thing. But a bit slicker.
Oh yeah. Paypal sends a text asking if the payment is legit. At 4 AM. And if you don't respond they assume the payment is ok and send it through anyway. Making their 2FA worthless.

This time they covered their tracks a bit better by deleting the payment confirmation email from the server so I never received it.