eezeebee@lemmy.ca to Mildly Infuriating@lemmy.worldEnglish · 3 months agoI started to get these daily at random hours, even when I'm sleeping. Someone's trying to hack me?lemmy.caimagemessage-square45fedilinkarrow-up11arrow-down10file-text
arrow-up11arrow-down1imageI started to get these daily at random hours, even when I'm sleeping. Someone's trying to hack me?lemmy.caeezeebee@lemmy.ca to Mildly Infuriating@lemmy.worldEnglish · 3 months agomessage-square45fedilinkfile-text
minus-squareSkull giver@popplesburger.hilciferous.nllinkfedilinkEnglisharrow-up0·3 months agoChange your password. When they get to the “provide a token” part of the login, they’ve already guessed your password correctly. Set up non-email 2FA as well if you haven’t already.
minus-squareprettybunnys@sh.itjust.workslinkfedilinkEnglisharrow-up0·edit-23 months agoFWIW Microsoft does a blind token here meaning they send it if your password is correct or not. In that way the person attempting to gain access has no context of if the password is correct or not
minus-squareSkull giver@popplesburger.hilciferous.nllinkfedilinkEnglisharrow-up0·3 months agoAs far as I know, the device history being filled with these devices is the result of someone getting past the first factor, though. Spamming you every time you log in is pretty dumb but I guess Microsoft likes giving people warning fatigue.
Change your password. When they get to the “provide a token” part of the login, they’ve already guessed your password correctly.
Set up non-email 2FA as well if you haven’t already.
FWIW Microsoft does a blind token here meaning they send it if your password is correct or not.
In that way the person attempting to gain access has no context of if the password is correct or not
As far as I know, the device history being filled with these devices is the result of someone getting past the first factor, though.
Spamming you every time you log in is pretty dumb but I guess Microsoft likes giving people warning fatigue.