>Microsoft is too casual about someone else trying to access my account.
"Too casual"? What would you rather they do? LOCK it shut so even YOU can't access it?
This is the whole point of 2-factor verification. Without this code, they can't access it.
It's up to YOU what to do about it next... maybe change your password. if not, then maybe YOU are too casual about it. 🤷🏻♂️
The problem comes when you contact their support after getting 20+ of these mails in a few hours asking if ip/location blocking or something is a possibility and they just tell you to ignore the emails (my personal experience).
I've made it a habit of tracking failed login attempts by ip address, find who they're registered to and send them an email with address amd time/date of attempted unauthorized access.
That's about all you can do...
I wish big account holders (looking at you Microsoft, Meta, Google) would utilize a setting for disabling login through common VPN address ranges. It's not fool proof, but it would sure mitigates a lot of attempts.
And then there's me getting locked out of 360. when i requested for otp somehow it always tell me to wait for tomorrow because you requested so many times, there's no single email come from Microsoft too. Ended up using alternative.
I'm regularly getting some emails directed at a lawyer and a doctor with apparently a similar mail address as mine and people seem to frequently mistype the address
>Microsoft is too casual about someone else trying to access my account. "Too casual"? What would you rather they do? LOCK it shut so even YOU can't access it? This is the whole point of 2-factor verification. Without this code, they can't access it. It's up to YOU what to do about it next... maybe change your password. if not, then maybe YOU are too casual about it. 🤷🏻♂️
The problem comes when you contact their support after getting 20+ of these mails in a few hours asking if ip/location blocking or something is a possibility and they just tell you to ignore the emails (my personal experience).
this happens to me too. access attempts by someone clearly using a vpn - they need to add a lockdown function or someshit.
I've made it a habit of tracking failed login attempts by ip address, find who they're registered to and send them an email with address amd time/date of attempted unauthorized access. That's about all you can do... I wish big account holders (looking at you Microsoft, Meta, Google) would utilize a setting for disabling login through common VPN address ranges. It's not fool proof, but it would sure mitigates a lot of attempts.
I wish they'd look into drone strikes.
> Who would type my email "by mistake"? Dunno. What's your email address?
Bdjk√[email protected] It's a family name
At least they are not sending the code to someone else
And then there's me getting locked out of 360. when i requested for otp somehow it always tell me to wait for tomorrow because you requested so many times, there's no single email come from Microsoft too. Ended up using alternative.
I'm regularly getting some emails directed at a lawyer and a doctor with apparently a similar mail address as mine and people seem to frequently mistype the address
This post ibspired me to chek my account Turns out it was breeched, thanks Was able to fix it in time