Authenticator keep pushing notifications for login

Question

I keep getting notifications that someone is trying to login to my account. I keep on denying it. Yesterday I even got the email with access code at 1 am. I guess someone it’s trying to get in to my account. What I can do to stop it?

Answer 1

To stop repeated, unrequested sign-in prompts and codes, take these steps:

1. Do not approve any prompts or use any codes you did not request

• Ignoring/denying them keeps the account safe as long as the attacker cannot provide the second factor.

2. Review recent sign-in activity and secure the account

• Go to the Security basics page and sign in.
• Select Review activity and check the Recent activity page for unusual sign-ins.
  • For events in Unusual activity, expand and choose This wasn’t me.
  • For events in Recent activity, expand and choose Secure your account.
• After that, on the Security basics page select Change password, set a strong new password, and do not reuse it elsewhere.

3. Handle unrequested verification codes

• Unrequested codes can mean:
  1. Someone is trying to access the account.
  2. Someone mistyped the phone/email.
  3. A delayed delivery of a code requested earlier.
• Important: Do not respond to any codes that were not requested. Without the code, the attacker cannot complete sign-in.

4. Strengthen sign-in and reduce code spam (go passwordless)

• To reduce reliance on SMS/email codes and improve security, switch to passwordless sign-in methods such as Microsoft Authenticator, Windows Hello, SMS/Email codes, or security keys. See Go passwordless for details.

5. If unusual activity continues

• Keep monitoring Recent activity and continue marking unknown events as not yours.
• Make sure all security info (phone numbers, alternate emails) on the Security basics page belongs to you and remove anything you do not recognize.

---

References:

• What happens if there's an unusual sign-in to your account
• Common problems with two-step verification for a work or school account