@grumpygamer @flameeyes @ASCIInaut@infosec.exchange
But that’s only true if the password manager is compromised. If the password manager is safe, but the password is compromised another way, then the additional factor in the password manager still protects the account.
@f1337 @grumpygamer @ASCIInaut covered it in the post as well. Email 2FA scales better for that and it's easier to reason around.