Share via

My personal hotmail account hacked by hacker with authentication app enabled.

Billy Wong 40 Reputation points
2025-11-20T10:51:05.7333333+00:00

Dear Microsoft Support and Experts,

I need your assistance with a serious issue regarding my personal Hotmail account. Last night, after resetting my password to install my account on a new mobile phone, I found that a draft message is repeatedly being created. This draft contains blackmail threats, stating that my personal information will be sent everywhere unless I pay in Bitcoin.

I attempted to reset my password and delete the draft, but it keeps reappearing. I also requested a recovery key and tried to enable two-factor authentication (2FA), but I haven't seen any devices activated with 2FA.

Unfortunately, I’ve now lost complete access to my email account and am continuously prompted for an authentication code, which I have not registered. It appears that the hacker may have gained access before I reset the password and activated the authentication app.

I have tried using my backup account for the code, but it states that I have attempted too many times and that I am now disallowed from logging in or receiving a text code via mobile number. Additionally, when I use the recovery code, I receive an error message (see below).

Please advise me on what steps I can take at this stage. I wish to regain access to my account and check for any linkages to this account so I can inform my contacts and manage potential damage control.

Error Message from Recovery Code:

Submitting request

There's a temporary problem with the service. Please try again. If you continue to get this message, try again later.

Cancel

Retry

Thank you for your assistance.

Regards,

Billy

Moved from: Microsoft Security | Microsoft Authenticator

Outlook | Web | Outlook.com | Account management, security, and privacy
Answer accepted by question author and recommended by moderator
  1. Harold Milan 16,860 Reputation points Independent Advisor
    2025-11-20T16:21:18.3933333+00:00

    Hi Billy,

    The reason you're facing such a hard time is because Microsoft's security is designed to be highly automated. When a human agent can't verify your identity manually (which they are generally not allowed to do for free consumer accounts for security reasons), the automated systems kick in. When those systems fail due to technical errors or clever hackers, it creates a very difficult situation for the legitimate owner.

     

     

    Since you need to contain the damage and regain control, here's what you should focus on:

    1Prioritize Physical/Digital Security

    The fact that the draft message keeps reappearing strongly suggests the hacker might still be connected or is using a compromised device.

    Scan your systems: Run a full, deep antivirus scan on all devices you used to access that Hotmail account recently (PC, phone, tablet). Make sure your antivirus software is fully up-to-date.

    Factory Reset Devices: Seriously consider a factory reset on the new mobile phone you were setting up, especially if the issue began around that time.

    Disconnect Temporarily: Disconnect affected devices from the internet while you run these scans.

    Navigate Account Recovery Form (Carefully)

    The Account Recovery Form remains the single official path for you right now, as direct phone support won't bypass the automated security measures.

    Wait out lockouts: You mentioned you're blocked for too many attempts. You must wait for this temporary lockout to expire completely before trying again.

    Be Persistent and Detailed: Use a computer you typically use. When you fill out the form, provide as much information as humanly possible:

    Subject lines of recent emails you sent.

    Email addresses of your contacts.

    Any past passwords you remember using.

    This is your best self-service bet. It’s frustrating, but it’s the process Microsoft requires.

    Manage the Damage Control Externally

    You need to inform your contacts to prepare them for potential spam or phishing from your address.

    Use a different email account, social media, or phone calls to warn everyone that your Hotmail account is compromised and they should ignore any messages from it, especially those with links or attachments.

    Seek Official Guidance (via Chat)

    While a phone number won't instantly fix this, you can use the official support portal to connect via chat to report the service error and the criminal activity.

    Go to the Microsoft Support.

    Use the virtual agent to describe your issue ("Account compromised, blackmail threats, recovery form failing").

    Keep navigating the prompts until you are offered the option to __"__Chat with a support agent". This is your chance to explain the situation to a real person and ask them for guidance on the technical error with your recovery code and the ongoing security breach.

     

    0 comments
Answer accepted by question author and recommended by moderator
  1. Q&A Assist
    2025-11-20T10:51:32.02+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    It sounds like your Hotmail account has been compromised, and you're facing multiple issues with recovery and unauthorized access. Here are some steps you can take to regain control of your account:

    1. Try Account Recovery: Go to the Microsoft account recovery page and follow the prompts to recover your account. Make sure to use any recovery options available, such as alternate email addresses or phone numbers that you may have set up.
    2. Contact Microsoft Support: Since you are facing issues with the recovery process, it's advisable to contact Microsoft Support directly for assistance. They can help you with account recovery and may have additional tools to verify your identity.
    3. Check for Account Activity: If you regain access, check your account activity for any unauthorized changes or settings, such as forwarding rules or linked accounts that you did not set up.
    4. Secure Your Account: Once you regain access, immediately change your password to a strong, unique one. Enable two-factor authentication (2FA) again, and ensure that your recovery options are up to date.
    5. Monitor for Further Issues: Keep an eye on your account for any suspicious activity and inform your contacts about the potential compromise to prevent them from falling victim to phishing attempts.

    If you continue to face issues with the recovery process, it may take some time for Microsoft to resolve the service problems you mentioned. Be persistent in reaching out to their support team for help.

    References:

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Billy Wong 40 Reputation points
    2025-11-22T11:10:22.2933333+00:00

    Lesson Learn:

    • Check for Account with hacked email address; update these accounts info.
      • Bank, Investment, Credit card,
      • Utilities Bill account
      • Internet, Disney+
      • Send email and whatsapp message to friends and people you worked with (i.e. Insurance Agents, Thearpy, etc)
      • Update Facebook to alert everyone that old account is hacked.
    • Try to reset the password and get control.
    • Saved the restore key (although it didn't help me in my case, I think better save it.)
    • Add backup login method
    • Frequently review your security history and see if any attempt to login to your email. You may consider enable authentication app.
    0 comments
  2. Billy Wong 40 Reputation points
    2025-11-22T11:01:17.9+00:00

    Further more, I had regained the control of my account and still see my password got reset.

    I later repeat the steps mentioned. (Reset my password via alias account) and view my account info.

    Added the company email and additional mobile number for authentication option.

    Remove the option set text authentication app.

    Then, request authentication with authentication app again. (System Generated new QR code)

    Download Microsoft Authenticator and scan the new QR code.

    I reviewed all the important account is updated with new email and removed hacked email.

    Update Account Info to remove the hacked email address.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.