I remember when I first entered the adult world paying my bills online was super easy.
These days, I feel like half the time I log onto some doctors office or mechanics website to pay a bill the site is like “yeahhhh, idk why but I’m just not going to accept your credit card. Also the button to the ‘finalize payment’ screen is grayed out even though you filled out everything.”
And they you email tech support and they’re like “idk delete your cookies I guess? That didn’t work? Guess you gotta mail us a money order.”
The fact that they waste my time with 2FA when I try to pay a bill is very funny. Like, damn, do they really think someone else is going to “illicitly” pay my bill? Lmao
Issue is if they get access to the portal for paying your bills they can usually access other information to, like if you have any payment methods on file.
When I click “pay bill” it only gives me access to the bill-payment system. I have to go elsewhere for medical stuff.
Then they could put that part behind 2FA is the thing idk. Too much effort I guess.
Segregating those systems isn’t always as easy as it sounds. Sometimes having those processes interact requires you put them on the same security level.