Hi,
To me, the rules a very much a mess at the moment, and i know they are to more people. Lets take a look:
Refunds: hacked: As much as you guys thing 2FA is ''godlike''.. its not. Theres multiple reasons for this. These days hackers start hacking pc's, instead of accounts. If 2fa is enabled and the pc is trusted, the hacker has freeplay on the account.
2FA is a #$%@ to set up sometimes and for some people. Ive gone through the process of setting it up with other people multiple times, and it has taken up to multiple days to get it to work sometimes. Bugs with time and errors still happen sometimes for some devices. If this person were to get hacked in the time they were setting it up, but didnt get it to work its rip... Seems very very unfair to me. Maybe theres a way to check if someone has talked to the account guardian in the last few days to check or something like that?
Having a strong UNIQUE password AND 2FA is what protects you, not just 2FA. How would talking to the account guardian help in this aspect?
If the hacker has access to your IP via a RAT or remote desktop tool (Teamviewer, etc) and you are either logged in to your account or they have your password from 1), keylogging or most commonly, 2) a database leak and because you reused the same password for everything you're screwed they could just talk to the account guardian and because it's essentially your computer (IP; MAC, UUID) there's no way for any staff to confirm that you were indeed hacked by someone remotely controlling your PC or if it just you or someone else having physical access to your computer