And what does that mean? He's not the first person to lose access to his 2FA and certainly won't be the last. I'm not sure if it was an online wallet, exchange, or both, but I've had also lost access to my 2FA device, broken device and didn't save any of the security codes, and I had to go through the verification process again and wait one or two full days till I was able to deactivate the 2FA, by sending a notification on my email. That way, if I was a scammer, the original owner would see the email and undo the process.
What I mean is the same as what happened to me on another exchange: I kept using "forgot password," and also requesting to reset my 2FA because it doesn't work, but the exchange ignored my request multiple times. I didn't receive password recovery, and suddenly they email me to verify KYC. That I think the OP would end up same as mine, and maybe later Kraken would ask for a KYC verification because he tried to request a recovery multiple times. That's what I mean.