I wonder what heuristics determines "last location". If it's geo-ip then it's ripe for "10 years later that ip is now somewhere else"<p>It's probably a synonym for a join over geo, ip, cookie state on a browser or physical device a decade back when the OP last logged in.<p>If the account had some declared financial worth eg bitcoin key info, I could see a civil suit forcing function but aside from that lever I think it's possible the public shame lever won't work after 10 years idle time.<p>Keep logging in folks, even with redirection. Enable 2fa and get backup keys printed.