Source (in Ukrainian):
http://mvs.gov.ua/ua/news/18175_Kiberpoliciya_vikrila_cholovika_u_vikradenni_elektronnih_koshtiv_z_kriptogamanciv.htmMy short summary:
The suspect worked in some unnamed crypto exchange based in Britain as tech support worker. He was targeting accounts of inactive users without 2FA installed, he was changing or adding recovery emails to those accounts, which allowed him to reset passwords and steal all user balance. The police estimates that he stole 720,000 UAH this way (~26,000 USD). The suspect was spending stolen money on gambling.
This should be yet another reminder to never store coins online for long term, and always use strong 2FA on your account and your email.
I agree that 2FA should be always enabled by users of exchanges this will add another security of your funds but enabling 2FA doesn't mean your cryptocurrencies are already safe, if the exchange you are using got hacked or planned an exit scam your funds can still be stolen, that is why never use exchanges for storing big amount of cryptocurrencies even the exchange is well known, but I'm just curious what exchanges are those he worked for. I don't want to click on the link of your source so I made my own research but can't found any similar to this. Anyway, good thing that this man gets caught already because it is possible that he will continue to do that.
not only in an online exchange but also on other accounts as well because this adds extra security to our account and hackers will be having a hard time to hack us but if a hacker is really dedicated they can still hack 2fa enabled accounts . they even hack an exchange which has a tripple security . me myself isnt a fan of 2fa's because i dont usually store my cryptos online for a longer time . if ever i have some , those coins are still not expensive . so i guess hackers wont ever got interested on my account .