eezeebee@lemmy.ca to Mildly Infuriating@lemmy.worldEnglish · 1 year agoI started to get these daily at random hours, even when I'm sleeping. Someone's trying to hack me?lemmy.caexternal-linkmessage-square45linkfedilinkarrow-up11arrow-down10file-text
arrow-up11arrow-down1external-linkI started to get these daily at random hours, even when I'm sleeping. Someone's trying to hack me?lemmy.caeezeebee@lemmy.ca to Mildly Infuriating@lemmy.worldEnglish · 1 year agomessage-square45linkfedilinkfile-text
minus-squareSkull giver@popplesburger.hilciferous.nllinkfedilinkEnglisharrow-up0·1 year agoChange your password. When they get to the “provide a token” part of the login, they’ve already guessed your password correctly. Set up non-email 2FA as well if you haven’t already.
minus-squareprettybunnys@sh.itjust.workslinkfedilinkEnglisharrow-up0·edit-21 year agoFWIW Microsoft does a blind token here meaning they send it if your password is correct or not. In that way the person attempting to gain access has no context of if the password is correct or not
minus-squareSkull giver@popplesburger.hilciferous.nllinkfedilinkEnglisharrow-up0·1 year agoAs far as I know, the device history being filled with these devices is the result of someone getting past the first factor, though. Spamming you every time you log in is pretty dumb but I guess Microsoft likes giving people warning fatigue.
Change your password. When they get to the “provide a token” part of the login, they’ve already guessed your password correctly.
Set up non-email 2FA as well if you haven’t already.
FWIW Microsoft does a blind token here meaning they send it if your password is correct or not.
In that way the person attempting to gain access has no context of if the password is correct or not
As far as I know, the device history being filled with these devices is the result of someone getting past the first factor, though.
Spamming you every time you log in is pretty dumb but I guess Microsoft likes giving people warning fatigue.