>If credentials are stolen, crypto or otherwise, a scammer can then use those stolen credentials to make a payment.
Crypto credentials are not comparable to bank credentials. Crypto credentials are a public key; you still need the secret key in order to authorize a payment. Credentials are insufficient to make a crypto payment.
Bank credentials are usually just open-source information that anyone can get a hold of, and they are usually sufficient to make a bank payment.
1) Yes, much like if someone finds your credit card number, they can't use it without your name, CVC code, and zip code.
2) It doesn't matter how secure you make it, because if your payment system is impenetrable, I'll just steal your account on some site where you've already enabled payments.
I'm trying to understand what you mean with your point (2). How do you think that a crypto wallet works? Could you walk me through a step-by-step of how it would be possible to steal "my account"? What do you mean by "account", and what do you mean by "enabling payments for a site"?
Crypto credentials are not comparable to bank credentials. Crypto credentials are a public key; you still need the secret key in order to authorize a payment. Credentials are insufficient to make a crypto payment.
Bank credentials are usually just open-source information that anyone can get a hold of, and they are usually sufficient to make a bank payment.