Share via

Login notification

santhosh mooga 0 Reputation points
2026-06-15T13:55:22.2033333+00:00

Somebody is trying to access my Microsoft account and I am getting a login request notification in my authenticator app but I don't know who is it and where they're doing it from how can I know it?

Microsoft 365 and Office | Subscription, account, billing | For business | Other
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alina Le 2,455 Reputation points Independent Advisor
    2026-06-15T14:06:39.85+00:00

    Hello @santhosh mooga

    Receiving unauthorized sign-in requests through Authenticator notifications is certainly concerning.

    First, might I confirm whether you are using a personal email account (@outlook.com, @hotmail.com) or a business account (@companyname.com) that belongs to an organization?

    This activity occurs when your email address or username becomes visible to automated scripts on the internet. When an unauthorized sign-in attempt is made using your email, the system automatically routes the notification to your Microsoft Authenticator app as part of its security design. By consistently denying these requests, you will take the right steps to help protect your account and prevent unauthorized access.

    In this case, I recommend taking the following steps to further strengthen your account security and prevent repeated notifications based on your account type:

    1/ If you are using personal account:

    You can set up an additional sign-in alias. These options help reduce unwanted sign-in attempts and provide an extra layer of protection.

    -Sign in to your Microsoft account 

    -Choose “Add email” 

    Start adding a new alias (do not remove anything yet). 

    -Create a new email alias 

    Use a strong, hard-to-guess address (e.g., random string).  Set it as your primary login email 

    -Make the new alias your main sign-in address. 

    -Disable login for your old email 

    This is critical, it blocks attackers from using the old address. 

    -Remove the old email alias if you no longer need it (Optional, last step)  

    For your reference: Change the email address for your Microsoft account | Microsoft Support

    I have attached screenshots to help you with the process:

    copyImage

    2/ If you are using business account:

    You can reach out to your IT Admin, who has global administrative rights in your organization’s tenant, to help strengthen your account security and prevent repeated notifications by referencing this thread.

    Getting too many authentication attempts on my account - Microsoft Q&A

    If you still need my assistance, please come back with screenshots or any additional details so I can review it again and see if there’s anything more I can help you with.  

    Wishing you all the best!

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".  

    Note: Please follow the steps in "our documentation" to enable e-mail notifications if you want to receive the related email notification for this thread.

    Was this answer helpful?

  2. AI answer

    2026-06-15T13:55:47.13+00:00

    Microsoft Authenticator itself does not show full details of who is trying to sign in, but there are two ways to see more information about these attempts:

    1. Check the sign-in prompt details
    • When a new sign-in request appears in Authenticator, it can include the location (city/region) based on GPS or IP.
    • Be aware that this location can be approximate or incorrect, because the app relies on the phone’s operating system and network to determine it.
    • If the location or device is not recognized, deny the request.
    1. Review Recent activity on the Microsoft account
    • Go to the Recent activity page for the Microsoft account (via the account security pages).
    • There, sign-in attempts are listed with details such as time, device, app, and location.
    • If any activity is not recognized, mark it as “This wasn’t me” and follow the prompts to secure the account.

    Security recommendations based on the context:

    • Deny any sign-in requests in Authenticator that were not initiated personally.
    • Check Recent activity and, if something is unfamiliar, use the Secure your account option.
    • Consider enabling or continuing to use passwordless or multi-factor methods (like Authenticator) and keep security info (phone, email) up to date.

    References:

    AI-generated content may be incorrect. Read our transparency notes for more information.

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.