A popular (and typically convenient) method of 2FA utilizes a password and a text message to your phone with a code that must be input before accessing your account. While this method is on average more secure than just using a password, hackers still have ways of getting that text code, either by SMS exploits or through social engineering.