Like the title says, I’ve got yesterday an email with a code to access my Microsoft account and that made me suspicious because I wasn’t trying to login to my account. When I looked at the login attempts I saw that someone else was trying to access my account, I changed my password, activated TFA. Thinking of going through and buying a physical key like yubico to further secure my account. Any tips are appreciated.

  • slazer2au
    link
    English
    510 months ago

    You should enable passwordless auth with number matching.

    • @daft61lunacyOP
      link
      210 months ago

      I’ve ordered a few yubico keys and will look into it.

      • edric
        link
        fedilink
        410 months ago

        You can also use MS Authenticator. It has the code match option too.