About a decade ago, my bank signed me up for a SMS payment service (tellers got paid $2 for each signup - I'd noticed, went in person to the central branch office to unsub, and then they signed me up again), through which I was instantly e-robbed (lost $1000).
Me: "It wasn't me. Give me my money back."
Them: "It was you. No we won't."
Me: "Ok, tell me where I sent it."
Them: "No we won't, it would infringe on the scammer's privacy."
Shit like this is why I don't even have so much as a debit card attached to the primary account our paychecks are direct deposited to. I had PayPal fuck me over when a scammer got into my account ago, sent themselves a "gift", and immediately pulled it out of a Western Union or something. Fortunately, I was a starving college student at the time, so I was only out something like $100. Lesson learned.
Nowadays, on the bank account I have alerts set up for electronic withdrawals, when the grocery store decides they want their money now and run my check electronically I get an SMS notification. Better yet, I typically just use a credit card and cut them a check at the end of the month, because if someone fucks with that, the onus is typically on the credit card company to make it right. Only ever had to tell them to pound sand once, after my wallet was stolen the thief immediately tried running up a bill at the local Best Buy.
I have a separate account with just enough to keep it open for if I ever have to set up a bank draft, and then I transfer just enough cash to cover the bank draft. It is a pain in the ass, but I'd much rather eat an NSF fee on the second account than have my mortgage check bounce.