Quote Originally Posted by Avatre View Post
The problem is, that even with 2FA they can still get your account if you don't pay attention to how SE actually has these things set up(if you even went to the completely obvious fake web address).

Fake site - asks for username, password and 2FA code on same page(found out because I was bored one day and checked it on my old laptop that had recently been wiped to get rid of it)
Real site - asks for username and password, if those are valid and you have 2FA enabled it takes you to the second page to input said code

Also, if you are already logged into the forums and need to login to the "forums", that is a major indicator that you are on a scam site
Hence, the second part of that same post.