Keybase CEO talking about Slack being compromised and how it affected them https://keybase.io/blog/slack-incident
But here's the really interesting bit:
> Though Slack originally told me 2FA would provide "a bit of extra security," these new data show otherwise. If the attackers inject server code, 2FA or U2F or any Web-based security practice does little.
2FA helps protect against password reuse, not much else.