Ivan

51

Activity

Recent activity from Ivan
  • Ivan commented,

    as per above.. home/my trade me/ping offers the below (under 'payment methods' is where credit cards are stored

  • Ivan commented,

    lol.. airpointsstore has mfa.. meanwhile, trademe still busy coding on their zx spectrum.

  • Ivan commented,

    I've not reviewed TM's Ts&Cs in many years, but I'd be surprised if they haven't indemnified themselves up the wazoo. simpler to do that than actually implement the widely accepted good practice of MFA.

  • Ivan commented,

    I do hope that Hannah, Head of Trust and Safety at Trademe is monitoring this thread as we cannot any longer post on the other "Scammed" thread she deemed needing closing to comments.one of the recommendations Hanna has made is to go to CERT..  so I did.. hoping Hannah can review the link they have on their site for businesseshttps://www.cert.govt.nz/business/guides/twostepstooeasy/

  • Ivan commented,

    so.. rather than implement MFA, head of security at trademe has decided to *checks notes* .. close down a thread warning people about just how unsafe trademe appears to be?

  • Ivan commented,

    in all honesty I'm probably not trademe's best customer, so not that important. but literally refused to purchase a fixed price offer this weekend due to the lack of security available (MFA basically). I'm not prepared to take the risk on trademe purchases until there's a patent effort on their part to offer the current basics of security. at this stage, trademe has no better security to offer me as a buyer than facebook marketplace, so why wouldn't I just use the site that doesn't have fees? there's no 'edge' they're offering any longer.  

  • Ivan commented,

    but it's not "everything you can" is it Lucy? MFA would absolutely be something more that you "can" but do not (as yet ) offer.

  • Ivan commented,

    "Incidentally, there are even more happening on Facebooks Marketplace. " .. at least facebook don't charge for the illusion of safety tho.

  • Ivan commented,

    @S ...I guess the challenge is that the initial member has a legit NZ account, then once hacked changes it to Aussie (or elsewhere). it doesn't appear (to me) to be specific in there that you can't start out legit, then adjust to an alt. country.  

  • Ivan commented,

    am I missing something here? if we tick boxes for notifications, and our account gets compromised, what's to stop them just unticking those boxes?