

If you forget to check the back door is locked before bedtime, 2FA is practically pointless, yes. I mean even if you have a clean copy of chrome, you can get hacked if someone convinced you to install a malicious plugin beforehand. If people want to log in outside of the official steam client and get phished, then well, who am I to stop them doing so. But the point is 2FA is really just one more key and one more door. I'll bet some of them never actually return to the ecosystem sadly. I recall seeing a reddit that suggested less than half of steam accounts have 2FA enabled, which I find hard to believe - trouble is, thousands of people do get hacked every week. Please don't tell you consider 2FA the end to all means and the accounts that get hijacked don't use it. On the other hand, 2FA doesn't, for obvious reasons, protect against phishing which is the #1 hijack scheme ATM. Trading & market is already tied to using 2FA. I would love if steam show everyone who does not enable 2FA a warning banner every time on startup. Originally posted by zaphodikus:This will keep happening.
