Well, nobody's forced it, but my company publishes content on TikTok that drives customers, and I want to be able to see it myself. You'd be surprised how many CISOs and security workers are on TikTok.

Edit: "experts" > "workers"

Tiktok.com

?

I would assume for advertising/business account. There are things you can only do on the TikTok app that you can't do on the web.

All jobs I've had since the mid 2010s essentially did the same for me by requiring 2fa in certain contexts

What kind of 2FA? I run OTP on my work laptop. Yes, it's maybe not really a 2nd factor if someone had access to my laptop with LUKS open. But at least I don't expect any automated attack because it's my own piece of code using an otp library.

One of the contexts is login to the laptop , would be pretty challenging to facilitate on device ;)

Sadly, biometric authentication as 2fa is not sufficient for that.

Same here. If someone is accessing my OTP codes from my laptop, I've got bigger problems to worry about.

Only my most recent job is doing this. Before the job provided a phone for 2FA that I didn't use much outside of that.