Share via

Hacked account with 2fa

Muhammad Juan Syarin 0 Reputation points
2026-06-12T14:18:51.42+00:00

Hello, I just found out that my account has been hacked. I don't know when it happened because my brother is using my laptop. The hacker changed my email address to mail.ru and added two-step verification, preventing me from accessing it. I know this because I once tried to log into my Xbox account to play Halo on Steam. Can I still get my account back?

Windows for home | Windows 11 | Security and privacy
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Lychee-Ng 21,585 Reputation points Microsoft External Staff Moderator
    2026-06-15T09:24:05.8233333+00:00

    Hi Muhammad,

    I’m really sorry this happened to you. Getting locked out of your account like this, especially when it affects your Xbox access and the attacker has already changed the recovery details, must feel incredibly stressful. The AI has given a few recovery paths, but I want to be direct with you here:

    If the attacker changed your account’s email/security information and turned on two-step verification, it's unlikely for you to successfully recover that personal Microsoft account.

    User's image

    As you can see, the recovery page itself says the standard account recovery form cannot be used when two-step verification is turned on, and Microsoft’s support guidance says that if you cannot access any of the alternate verification methods, support agents are not allowed to reset the password or change the account details for you.

    User's image

    I know that is a difficult answer to hear, but I want to give you a clear expectation on this. You can still attempt the recovery, but at the same time, assuming the account may be lost and focus on protecting your data.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    Was this answer helpful?

    0 comments

  2. AI answer

    2026-06-12T14:19:18.6833333+00:00

    If the hacker changed the primary email and added two-step verification, recovery is only possible through Microsoft’s official hacked-account and recovery flows. There is no manual override, even for Support.

    Follow these steps immediately:

    1. Scan the laptop for malware
      • On Windows 11, use Windows Defender:
        • Select Start.
        • Type Windows Defender and open it.
        • Make sure it’s up to date and run a full scan before trying to recover the account.
    2. Use the hacked/compromised account guide
      • Follow the steps in How to recover a hacked or compromised Microsoft account. This includes:
        • Running antivirus (done in step 1).
        • Trying to change your password if you can still sign in at all.
        • If you cannot sign in, use the reset your password option from that article.
    3. Use the Sign-in Helper and recovery form
      • If normal reset options fail or you don’t recognize the verification email/phone anymore, use the Sign-in Helper tool: it guides to the right recovery options.
      • If needed, complete the account recovery form:
        • Use a device and location you previously used with this account (for example, the same Windows 11 PC or Xbox, at home).
        • Provide as much accurate information as possible (old passwords, services used, etc.).
    4. Understand the 2FA limitation
      • If two-step verification is turned on and none of the verification methods (email/phone/app) are accessible anymore, the documentation states that Microsoft cannot help further. Support agents are not allowed to send password reset links or change security info.
      • In that case, the account may be unrecoverable.
    5. If you regain access
      • Immediately:
        • Change the password to a strong one.
        • Remove any unknown aliases or security info.
        • Add your own secure verification methods (phone, alternate email, Microsoft Authenticator) as described in the Advanced security options guidance.

    If the recovery form and Sign-in Helper both fail and the hacker fully replaced the security info with 2FA, the account cannot be recovered according to the provided guidance.

    References:

    AI-generated content may be incorrect. Read our transparency notes for more information.

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.