![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 22%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
2,538 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 22%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Hello Mabore,
Based on your description, I understand that your Microsoft account may be under attack, you have enabled Two-Factor Authentication (2FA) for your Microsoft account, which should prevent unauthorized access. it's possible someone has gained your account credentials. I recommend taking additional steps to further secure your account.
If your password has been repeatedly leaked, it's possible that it may be weak or easily guessable. Please ensure you create a strong, unique password that has not been used elsewhere. Consider using a password manager to generate and store complex passwords. change your password and update security settings You can do that on the Security settings page, where you can also remove all trusted devices. To learn more about account management and security, see Security basics
In addition, for the security of your account, please refer to the methods mentioned in this document to protect your account and strengthen its resilience to attacks. How to help keep your Microsoft account safe and secure - Microsoft Support.
More information: Check the recent sign-in activity for your Microsoft account.
Also, wanted to check if you have leveraged risk policies and conditional access policies as an option. you can set up device base and location base conditional access policy for more security please do refer this policy in below document.
Location based Conditional access policy
Device Based Conditional access policy
Refer to this link for more detailed information - https://learn.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identity-protection-configure-risk-policies
Enable sign-in risk policy for MFA - https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-risk-based-sspr-mfa#:~:text=Enable%20sign%2Din%20risk%20policy%20for%20MFA
Check the recent activity section of your Microsoft account for any unauthorized access or changes. Report any suspicious activity to Microsoft.
Secure Your Email Account since email accounts are often used for password recovery, ensure that your email account is secured with 2FA as well. Be cautious of phishing emails or messages that may attempt to trick you into revealing sensitive information or login credentials.
I hope this clarifies things.
Please remember to "Accept Answer", so that others in the community facing similar issues can easily find the answers.