Single post in Account Breach incident

For those who use Chrome: A recent update gave you the ability to have it auto-gen you a strong password and for it to auto-remember it (not good if you're using a public computer!!) this password has all the positives about a strong password: it's long (I think at least 16 characters), has a mix of upper and lowercase letters, numbers, and symbols.. Also: pins are...for lack of a better word, dumb. The less numbers in a pin the easier it is to crack, and thhose randomly generated "ensure you aren't a bot, and answer this stupid math question" thing really only works for sign ups. If I have to go get a pin everytime I log in from a new location/device I'd have to stop playing PFQ. I have so many different IPs I cross through while at work, it's no longer funny. Now assume I log in from 12 of those (2 stable) that's 12 pins on day one and 10 pins every other time until I finally log in enough that it's rarer to get a pin. Now imagine how frustrating that would be to have to get a new pin everytime you log in? Most 2 step verifications don't require you have to go back and forth--it's usually something right there. Plus, security questions aren't all that secure. Let's say we need to add three questions, and my three are as follows: "What's your pet's name? What's your mother's maiden name? What city were you born in?" Anyone who knows me well enough (or has found my online family tree, which is semi-public), can have the answers to those in about 5 minutes. They only really work to ensure that you utterly give up, especially if you answered different to that first question than you would now. I'm all for 2FA but please, for the love of Sally, do not use pins or security questions, it's just too much hassle..