![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Multiple unsuccessful sign-in attempts from multiple locations all over the world are not uncommon. Not only hackers and scammers but botnets and zombie computers are known to constantly scour the Internet, randomly searching (scanning) for vulnerable computer ports, user accounts, passwords, emails and make make repeated attempts to access them.
When Microsoft notices a sign-in attempt from a new location or device, they help protect the account by sending you an email message and an SMS alert with information on what you can do about unusual activity as noted in What happens if there's an unusual sign-in to your account.
Microsoft advises folks to check you Recent activity page for any unusual sign-in attempts and to change your password if you think someone else may have accessed your account or if you're concerned that someone might have access to your account. Microsoft also asks that you notify them if you do not recognize any activity on your account in order to help protect the account and provides information on what to do if your username and password have stopped working.
As long as these attempts are unsuccessful, an attacker will not gain access and your account remains safe (uncompromised).
To increase your security and minimize the risk of account compromise and identity theft, you can use an alias (nickname or moniker) which is just another email address or phone number that is associated with and works with the same Microsoft account. All your contacts and settings will stay the same without having to create to a new account. An alias is essentially just an alternate way with which you can sign-in and disguise yourself. Account aliases can be found by signing into your Microsoft Account and clicking on the link for your Account info where you can manage how you sign-in to Microsoft.
Using an alias should temporarily stop these attempts, however, since an alias is just another email address it too can eventually be compromised just like your primary email. You would be more secure to change the way you sign in to your Microsoft account on Windows 11 by using a passkey (passwordless authentication) which has no username or password so it cannot be exposed or stolen. Instead, a passkey relies on public-key cryptography in combination with Windows Hello biometrics to sign-in.
Passkeys can only be used with the account on which it was set up and they are linked to a specific device (computer, tablets or smartphone).
- What are passkeys? How do they work and how do they relate to FIDO2
- Passkeys Overview & Management
- Creating and Signing in with a passkey
Account Security ultimately is the responsibility of each individual user which is the reason Microsoft provides numerous Support articles to help you ensure your account is safe.
