I really don't see how this has anything to do with what I said?
Let me clarify even further:
I think that Mindark has an issue with people polling the "my-items"-page on the account page, probably due to how it's implemented. They tried to resolve this with throttling, which in turn broke the 2fa.
This is just a guess, based on the changes to the captcha, the constant attempts to rewrite the functionality of the my-items page as well as the timing of the problem occurance.
I think what they're currently trying to do is throttle it by snapshotting the items, and returning that snapshot instead of trying to return it realtime. I think this is the right way to go. Next step would be to provide an API-route that is properly throttled to said snapshot (so people wouldn't attempt to poll it constantly)
However, all of this would be void if MA just provided us with proper means of handling this clientside, with, say logging important events in chat-log?
EDIT: removed some salt