Yeah, MFA is probably the best of the alternatives, especially if you can get it to go to your phone. If you haven’t disabled or changed your web admin password and login, you can do that immediately without waiting for anyone else. Just follow the handy-dandy directions in your device’s handbook or online owner’s manual.. Cutting attacks on VPN helps everyone, especially those in prison states.