This is purely not the fault of the phone holder because there is no way to control what someone who steal your phone can do with it.
It partly is, though. We know SMS verification is inherently insecure, and has been for years. Continuing to use it is akin to using the same simple password for every account you own.
If you have enough IT knowledge to buy and store crypto, then you definitely have enough to use proper 2FA.