I have 2 factor auth and security questions on my account and use a password generator to create unique passwords, and yet someone is still able to reset my password every few weeks and try to charge fraudulent purchases to my account.

Can't get their phone support reps to take the issue seriously and actually look into how someone is able to exploit their password reset process without even needing access to the account's email to get the reset URL.