Why MFA is getting easer to bypass and what to do about it

Why multifactor authentication based on one-time-passwords and push notifications fails.