Hah, if you've ever used the TreasuryDirect site it's a disaster from the Windows XP days. Reminds me of those old Flash and Silverlight apps. The keyboard in the article is a virtual keyboard you click to type your password in for "security" reasons (yet there's no 2FA app supported).
It made sense at one point in the past when everyone was worried about keyloggers and nobody was thinking about credential stuffing. Information security has come a long way in the past 20 years.
