Account linked to hacker's email and can't be changed during 30-day security period

Question

My account got hacked and was recently recovered via Microsoft's account recovery form, and I have changed the password. However, I noticed that my account is still linked to the hacker's email and cannot be changed due to the 30-day security period. This means the hacker could cancel my request to change the security email and thus change the password again. So, could Microsoft at least allow me to remove the hacker's email within these 30 days?

Answer 1

Hey there! Nice to meet you!

Since you were able to request a security info change, your only option is to wait for the 30-day restriction state to complete; but just as you mentioned, if the hacker has their email or phone number linked to your account, having them in full control over your account, they can simply cancel your security info change request.

If this happens, you will need to try requesting again, and hopefully, the hacker will not notice.

Unfortunately, it is also not possible to expedite or bypass the 30-day restriction state.

However, if the 30-day restriction state is complete, you will be able to remove the hacker's security info email/phone number from your account using your newly added security info.

You may also check this link for more information regarding security info change: https://support.microsoft.com/account-billing/what-does-security-info-change-is-still-pending-mean-cbd0f64f-02d9-45d2-90c3-2375e5a72e52#:~:text=You%20were%20the%20person%20who%20removed%20the%20security,these%20security%20proofs%20to%20complete%20the%20cancel%20request.

Thank you for your understanding! Please let me know if you need anything else.

Best regards,

Darhyl

Answer 2

Microsoft does not allow bypassing or shortening the 30‑day security info change period, even in this situation. The 30‑day restriction is enforced specifically to protect the account in case security info was removed or replaced by someone with unauthorized access, and it cannot be expedited or overridden by support.

During this period:

• When all security info has been removed or replaced, the account is put into a restricted state for 30 days.
• The original security info (email/phone) receives alerts about the change.
• The request to remove or change security info can only be canceled from the Your security info change is still pending page.

If the security info change was initiated by the legitimate owner:

1. Sign in to the Security or Advanced security options page.
2. On the Your security info change is still pending window, use the cancel this request link if the change was made by you and you still have access to the previous security proofs.

If the change was made by a hacker and the account is compromised again:

1. Go to the Security page and, on the Your security info change is still pending window, select let us know and follow the prompts.
2. If access is lost again and security info is no longer available, use the account recovery process described in Help with the Microsoft account recovery form and How to recover a hacked or compromised Microsoft account.

Support agents cannot manually remove the hacker’s email, change security info, or shorten the 30‑day period. All changes must go through the automated security and recovery flows.

---

References:

• What does “Security info change is still pending” mean?
• Troubleshoot Microsoft verification code issues
• Help with the Microsoft account recovery form
• How to recover a hacked or compromised Microsoft account
• What happens if there's an unusual sign-in to your account
• Cannot Access Microsoft Account After Hacker Changed Email, Advice Needed - Microsoft Q&A
• hello my email was (Moderator note: PII removed)@icloud.com and now its (Moderator note: PII removed)@jerkoffmail.com can please someone help me and the team change it my username in xbox is (Moderator note: PII removed) please help me team and change it - Microsoft Q&A