I scrambled because the only way I was notified was via a text message that read 'Your two factor settings have been changed. Contact email@example.com if you did not do this.' Upside (for me) is that I changed all my passwords, downside (for Coinbase) is that I promptly closed my account. For a company whose success hinges on security, it seems like turning off my two factor auth is either a mistake or a poor decision. Anyone else have a similar experience?