You mean to say that even STAKE wont be knowing whether 2FA has been used for this withdrawal or not..?
I am not that tech-savvy but I follow them online and their advice on how we can keep ourselves safe online, which includes what people don't know that hackers can do. So, let me not speak entirely for Stake, but it is possible that they (Stake) see all security checks passed as regular once they (the hackers) are in.
My friend, hacking is more than this, authenticity checks will be a forgotten issue when they are in. Hacking has different levels.
Please let me know how to Bypass 2FA, Coz we have to find a solution for that... Otherwise there is no meaning in having it.
You know what, I wouldn't say that 2FA is totally useless, it will still be safe over 99%+ of all hacking attempts if I am correct. But as it is, these guys (hackers) are more brilliant and crafty than each other. So, let's pray that the more sophisticated ones will never see us as a targets or randomly steal from us.
The question being raised here is not only about how the hacker get into the account, it's also [and more emphasized on] how they bypass the 2FA verification to withdraw OP's fund. OP knows the safety and efficacy of 2FA, which with Stake's security that's claimed to be impenetrable, shouldn't put OP here on the first place. What OP asked from you is an further explanation on your statement, to mitigate future situation, about how do these "different level" of hacking works on 2FA.