Texas Bank Sues Customer After $800,000 Scam.

So either the bank’s supposed “two-factor” solution flat out failed (seriously arguable that an IP address is a legitimate “what you have” factor, IMHO) or they processed it anyway?  It will be interesting to see how this plays out.

Looks like another case of sacrificing security at a real world cost for ease-of-use roughly tied into my most recent previous post.