Amazon Cognito
Developer Guide

Managing Security for Amazon Cognito User Pools

After you create your user pool, you can add SMS and TOTP multi-factor authentication (MFA) to your web or mobile app. You can also add compromised credentials protections and adaptive authentication which are part of Amazon Cognito advanced security.