Riker wrote on Nov 8, 2012, 23:34: Sounds reasonable to me. It sounds like that $26 million was profit. Covering your costs is one thing. Profiting off your own systems' insecurity is another thing entirely.
None of that was 'profit' They're selling them AT COST. You can pay up to $10 for even crappy authenticators. $25-50 for RSA branded ones. And the authenticators are only a small fraction of the LICENSING costs to maintain all those authenticators on the back end with licenses required for every single authenticator, on top of the server and maintanence infrastructure. They are 'not making money' by any stretch of the imagination.
Note you can get authenticators for free on any cellphone. Ergo if 'making money' was the presumption, why make such an option available? IT's stupid logic that's why.
And note Authenticators aren't REQUIRED to play. They're added security. Note you DO NOT HAVE TO USE the RMAH. Thus any idea that you're 'forced' to use an authenticator is again moot.