[mtgx]

Using U2F security keys is one way to stop phishing if the app you're supposed to log into requires it.

https://krebsonsecurity.com/2018/07/google-security-keys-neu...

[tgsovlerkhgsel]

Unfortunately "phishing" nowadays is used to describe any kind of social engineering, including all variants of tricking the victim into executing malware on their machine.

U2F won't save you there, it will just make the attack a bit more annoying.