(Credits: Leon Neal/Getty Images) You probably turned on multi-factor authentication (MFA) a while back, and if so, it was the right call at the time. After companies switched on the text-message codes and tap-to-approve prompts, cybercriminals spent several years learning to walk around them. The attacks kept improving while most defenses stood still. The good news is that phishing-resistant MFA, which used to cost enterprise money, is now within reach.