![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 47%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Microsoft 365 and Office | Subscription, account, billing | For business | Other
Microsoft 365 features that help users manage their subscriptions, account settings, and billing information.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 28.000000000000004%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
Hello @Full service Frank
I understand that receiving a lot of unauthorized access attempts to your account is very concerning. I will do my best to assist you based on information I have gathered from similar cases. To better assist you, may I confirm:
- Are you using a personal email account (e.g., @outlook.com, @hotmail.com) or a business account (e.g., @companyname.com) that belongs to an organization?
This activity typically occurs when your email address or username becomes visible to automated scripts on the internet. When an unauthorized sign-in attempt is made using your email, the system automatically sends a notification to your Microsoft Authenticator app as part of its security design.
You need to do the right thing by consistently denying these requests. This helps protect your account and prevent unauthorized access.
I understand that you would like to trace the source of these attempts. However, as an independent advisor, I can only recommend steps to strengthen your account security and reduce repeated notifications based on your account type.
(From what I know, the system only logs completed sign-in attempts (successful or failed due to incorrect passwords or timeouts. As a result, these denied attempts may not appear on the Recent Activity page for tracing purposes: What is the recent activity page?)
1/ If you are using personal account:
You can set up an additional sign-in alias. These options help reduce unwanted sign-in attempts and provide an extra layer of protection.
-Sign in to your Microsoft account
-Choose “Add email”
- Start adding a new alias (do not remove anything yet).
-Create a new email alias
- Use a strong, hard-to-guess address (e.g., random string).
- Set it as your primary login email
-Make the new alias your main sign-in address.
-Disable login for your old email
- This is critical, it blocks attackers from using the old address.
-Remove the old email alias if you no longer need it (Optional, last step)
For your reference: Change the email address for your Microsoft account | Microsoft Support
I have attached screenshots to help you with the process:
2/ If you are using business account:
You can reach out to your IT Admin, who has global administrative rights in your organization’s tenant, to help strengthen your account security and prevent repeated notifications by referencing this thread.
Getting too many authentication attempts on my account - Microsoft Q&A
If you still need my assistance, please come back with screenshots or any additional details so I can review it again and see if there’s anything more I can help you with.
Wishing you all the best!
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in "our documentation" to enable e-mail notifications if you want to receive the related email notification for this thread.