Also, it's to help hide the real IP so it can't be targeted directly.
What good does it make? If NAT device performs 1:1, then every single packet, destined to "fake" IP will reach "real" IP. Just as there wasn't NAT, only with a hop more. NAT, combined with firewall, is different matter .. but it's the firewall that makes all the difference.