With 47,000 results for "2fa exploited" can't say I'm thrilled. No doubt depends on the implementation. Certainly hope the solution is open source. Hate tying an account to a phone number, makes it super easy for fed to take over an account. Are we trading privacy for security?