I’ve been going through updating all of my accounts (passwords, 2FA, etc.), and I’ve noticed that there are a lot of sites that don’t offer any form of MFA.
I can understand smaller services that might not have the bandwidth, but surely larger organisations are able to get this setup?
Because they don’t feel like it and aren’t required to
Just copy paste that for literally any “why aren’t more companies doing (X thing that makes sense and better protects the consumer)?” questions.