http://boards.4chan.org/biz/thread/3173675/cryptopia-hacked
how this is related with the waves wallets?
A user has 2FA enabled, but Cryptopia allows user to user transfers which is the massive flaw in all that? I to assume that all these users went to the trouble of setting up 2FA for withdraws, but not for login or transfers (we offer 2FA on both of those functions) - if so, that sounds kinda silly.
If you're using decent 2FA (and by that I mean google auth or one of the Cryptopia dongles), then:
You can't be phished for your 2FA, if you check for the Cryptopia EV SSL cert when you login.
Your 2FA can't be keylogged.
Your 2FA can't be photographed or recorded.
And your account remains safe. The reason Cryptopia and every other crypto services push 2FA so hard is not because we make money from it (which we don't), it's because your account is so much more secure with 2FA than just having a really long and complex password; like night and day differences of secure.