In addition in BK8, if you want to withdraw crypto you need an Authenticator as additional security
This is a good suggestion, security is an important thing to be improved and 2FA is a must nowadays.
The most important thing is not to use the same password on every site.
Having different password only is still not that safe if we use the same email almost in all sites.
Imagine our email is hacked, means that all our accounts might be compromised by the hacker.
So it is better if we do not use the same email as well as password for many accounts.