The only time a hack can occur with an authenticator as already been explained by the other replies so I will not repeat them. But those other methods that attack an account with a real authenticator attached to them. Usually take more effort and time to accomplish. In some cases as the man in the middle attack it might even take more money to pull it off.
Hackers will always be looking for the easy targets as far as compromising accounts. Anything that takes a lot of effort to compromise an account. Is time that they could've spent catching 10+ accounts that are easy to hack into.