MartinEveryone I know who works in security has seen Some Stuff. But I've never seen a website that told users you must remove two-factor authentication.
phrewfuf@mshelton It's asking to remove _text message_ 2FA, not 2FA in general.
Which is not as bad as you make it sound, because SMS based 2FA is one of the insecure ways to 2FA.