Hi, You can use the audit log to search for suspicious activity on the tenant if you consider that someone is trying to access: https://learn.microsoft.com/en-us/microsoft-365/compliance/audit-log-search?view=o365-worldwide. You might also have some settings that trigger this: https://learn.microsoft.com/en-us/azure/active-directory/authentication/concepts-azure-multi-factor-authentication-prompts-session-lifetime I would also recommend the following actions to protect your accounts: https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/responding-to-a-compromised-email-account?view=o365-worldwide https://learn.microsoft.com/en-us/microsoft-365/troubleshoot/sign-in/determine-account-is-compromised
Unsolicited Authenticator notifications
JTS
0
Reputation points
The last few days I have been receiving unsolicited, unprompted, Microsoft Authenticator Notifications at all hours of the night that have expired. I am concerned that someone is trying to breach one of my Microsoft Accounts, but I do not know which one. What can I do to protect my accounts?
1 answer
Sort by: Most helpful
-
Aurelia Dumitru 10 Reputation points Microsoft Employee
2023-04-05T18:02:56.7966667+00:00