So im using wordpress.com as I definetly dont want the burden of running one of the most hacked CMS myself!
Now that I finally found out that you can securely configure your PayPal with TOTP 2FA I revisited all my other Accounts with SMS-2FA activated.
I still stand behind using SMS-2FA is better than no 2FA at all but if proper OTP-2FA or U2F is available then SMS-2FA really becomes a Security-Downgrade…
So I contacted @wordpressdotcom and fot the following responses:
So I guess it boils down to saving money/earning more money is more important for them than security which might bite them in the ass at some point…