blakamin: All the banks *might* have 2-factor authentication, but how many regular (non-geek) people know about it?
How many know how to use it?
How many have actually set it up?
How many people (that know it exists) don't use it because they find it annoying?
Why is it not mandatory?
I'm quite sure (don't take my word on it) that 2 factor authentication is now mandatory for most if not all banks, maybe old accounts that were set up before they brought it in may not have it.