Yeah Nirantali that is valuable information, thank you. I was not even aware about the QR codes as a lot of this is new to me (and others, it seems) so taking a screenshot didn't even cross my mind, neither did WinAuth which I was not aware of at all. In fact, the whole obvious impact of backing up codes didn't take root (pun intended? 😆) until after I had all my codes entered and the QR codes were long gone. In any case, your valuable insight is a little too late in my particular case, as I ended up going with Authy which allows you to backup and sync your codes.
I am in agreement with you however that this seems to be a painful leg towards FIDO2 which sounds very secure and legit.
Along such lines, a little horror story making the rounds today: https://www.zdnet.com/article/sim-swap-horror-story-ive-lost-decades-of-data-and-google-wont-lift-a-finger/
Glad to not see MSFT anywhere in there. 😁