Share via

Unauthorized Logins

Adler Family 46 Reputation points
2026-01-15T21:39:57.2866667+00:00

I had unauthorized US and overseas logins to my Microsoft account. I received emails from Microsoft and changed my password. There has been no further suspicious activity reported after the password was changed and I was able to login to do this. I noticed the birthdate in my profile was changed. How can I found out what else was changed or accessed or compromised? Please provide step by step instructions for what to check. Should I change the date back to the correct DOB and/or document the incorrect date in case it has been used for authentication and I would need to have this date available for that purpose?

Thanks.

Outlook | Web | Outlook.com | Account management, security, and privacy
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. EmilyS726 235.4K Reputation points Independent Advisor
    2026-01-16T03:00:41.87+00:00

    Hello,

    You might want to go through these to give a thorough check - and yes, change your dob back to correct one.

    Make sure you do this on a computer, not on smartphone or tablet. Go to https://www.outlook.com and log in, click on the gear icon on the top right to launch the settings.

    Then, on the Mail tab, go to Rules. Are there any rules set up here? If yes, delete them all.

    Then check the conditional format, again, if it's there, delete it.

    Then, check Forwarding and IMAP, If any items are present, delete them as well.

    ===========

    If you can't find anything, go to https://account.live.com > Your info > Sign in Preferences. Make sure to check all the aliases here. If you don't recognize any there, delete it.

    Then go to Security > Manage How I sign in, make sure all contact info is yours.

    Please make sure you change your password and enable two-step verficiation.

    Go to your account online, go to Devices, remove any devices you don't recognize.

    Then go to Security, click on Sign out everywhere. This is meant to kill any session that's still connected. Unfortunately, this one will take 24 hours to take effect.

    Then, take one step further - Go to your Microsoft account online https://account.live.com> Sign in > Your info > Sign in preference. Add an alias - You have two options here:

    Create new: this will allow you to use the native domain outlook.com to create a new alias.

    Add existing: this will allow you to add a 3rd party email address, such as yahoo, gmail, as long as they are not already associated with another Microsoft account.

    Once added, make this new alias your primary alias, do NOT delete the old alias. Then at the bottom, click on "Change sign in preference". On the next page, uncheck the box for the old alias. This means, from now one, the old alias cannot be used to sign into your Microsoft account, but it can be still used to receive emails, etc.

    Was this answer helpful?

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.