Yes, thats another issue if you fail to save the keys. So better to have a good internet when you doing recovery.
But I don't think, adding 2FA is easier, it will instead let the key to pass through another service.
The keys are safe with current flow, we just need to make sure to use account creation services we trust, or at least keep changing password.
Thanks
that is, I was thinking more about securing the withdrawal of funds from the wallet and viewing the keys in the additional f2a wallet. Of course, someone can still use scripts, but this somewhat narrows the number of potential fraudsters and thieves.