"organisations need to start using 2-factor authentication for wire transfers."
Most already do. And / or multiple approvers.
"Or am I missing something?"
If you think that fixes this problem, then yes. The people making the transfers in each scammed company are those authorised to do so...
Biting the hand that feeds IT
