The Troubles of a Microsoft Account Hacking
Cpassimple Posted messages 3987 Status Membre -
Yesterday, while I was working on a task that required my concentration, I received this message
I was in the middle of my work, I didn't pay attention to the header and thought it was spam to forget about it entirely afterward.
Today, bad surprise, I can't log into Windows 11 (open my PC), it wasn't spam after all...
I used the internet to find out what to do (fill out a form and send it), but that would be too simple.
The problem is that my Microsoft account no longer exists (in Microsoft's listings). The hacker replaced my email address with one they generated.
So to contact Microsoft, I can't provide my original email address since it no longer exists in their listing (it's the one they show when I try to log in).
As a result, I had to recreate the same email address as the old one to access the form. account.live.com/acsr
First question: Which Microsoft account are you trying to recover?
I can't put my original account since it's the one I'm using to be contacted and my account is no longer in Microsoft's listings (sorry for the repetition).
Thus, I wrote the address that the hacker generated (which seems completely stupid to me) and put my usual address to be contacted.
Apparently, I can wait 24 hours for a response; I did that 3 hours ago. We'll see what happens next.
P.S.: I also contacted an advisor through Microsoft's chat to explain the steps I had taken; he didn't seem shocked (but at the same time, either he's really accountable to the registration service as he indicated, or he's a bot. With automatic translation, I always have a doubt). But I didn't know what else to do at the time.
That's it for now; I'll check back tomorrow for updates. But this sucks
9 réponses
Hello,
It hasn't been 48 hours yet.
You still don't know where the hacker is located; Microsoft could notify you of their IP address, but it can get complicated if they're acting behind a VPN.
Recently, there has been a resurgence of user data theft (on PCs and smartphones).
Notably with a password manager
December 2022 --►LastPass: the hack is worse than expected, what should you do?
January 2023 --► Vulnerability of the KeePass password manager: are your data at risk?
January 2023 --► Norton: thousands of users hacked, password managers compromised
Do you know the reason why YouTube deleted your account?
Account closed for non-compliance!
@+
Hello and thank you for your reply.
Windows 11 was on the NVMe of my previous PC, which itself was a clone of a SATA SSD that was running Windows 10 two years ago.
As for the origin of the hacking, I don't really care (I am responsible for my hacking although the creator of the support should at least protect me minimally).
What disappoints me is that Microsoft offers no clear tools or any proper assistance to help its consumers (I spent all of yesterday in front of my screen chatting with some so-called support and am at the same point today).
Firstly, they sent my form to the wrong email address (the one that is hacked), and secondly, I have to wait 24 hours after leaving support to start the same circus again (contacting them by chat for the third time) since that's the procedure.
The crux of the problem is that the hacker changed both my phone number and my email address (with only one SMS notifying me, which was written like a spam message (Click here!).
Since I wasn't inclined to read it when I received it, less than 24 hours later, I lost everything (access to my PC, session name, notes on the sticky notes, game licenses and their backups, etc... Thankfully I don't use either Microsoft's messenger or Office).
PS: last night I formatted the PC with an ISO from the Microsoft website since the hacker's information was scattered everywhere on the previous session and I was no longer the exclusive administrator).
One more weird thing, despite everything, I still have a license for Windows 11 for an account I created yesterday and for which I made no request.
It's not a conclusion, but it looks like one. I'm not going to contact them today (it's Sunday and the chat waitlist is just crazy), I'll do it tomorrow.
But I feel like I can toss aside 10 years of Windows history (starting with 7), over 500€ in video game licenses just in the last 3 years, and various online services that I had gotten used to using and on which I had left content that I could consult if needed.
It's not a tragedy in itself, but Microsoft's support in case of hacking is crap (sorry moderation, I couldn't find another word).
Hello,
I might be mistaken, but from your screenshot, it seems that your account Google was hacked on your smartphone.
Your Gmail account to be precise.
This same account allows you to log into your W11 session.
So it could be a recently installed application on your smartphone that's to blame.
Or clicking on a conveniently timed link.....
Recovering it is a bit more complicated; the hacker has changed your email address. The hacker really did a number on you, but it's common these days, as normally changing passwords is enough, but not always!
I don't think it's a bot, but real hacking.
It does indeed suck for your video game licenses. (Gamer, no doubt, in your case).
@+
I don't download any applications. I primarily use the internet browser.
It’s indeed the Microsoft account that has been hacked, an account created from my email address.
By the way, the screenshot is a text message.
To sum up, a random person can delete our phone number and email address whenever they want.
Even if they use an IP address and a PC that have never been associated with the account. And the only security Microsoft offers is a text message.
Also, it’s pretty crazy that a company worth several hundred billion dollars has, as its only assistance option, a poor email. Here’s what I received and completed in hopes of recovering this account.
I come to check in.
The case is progressing... Microsoft has finally recognized the thief's address and identified him as such. I have not yet recovered my Windows account (the first form was sent to the wrong address by Microsoft). But now the thief can no longer use the Microsoft Windows 11 account, which is a relief for me.
I have to wait 24 or 48 hours for the Microsoft teams to analyze the questionnaire responses and restore the rights to the account.
As I've always been told: a bird in the hand is worth two in the bush.
I’m waiting to see
Hello,
Hoping that Microsoft can help you recover your Microsoft account after analyzing the form
Microsoft has finally found the culprit, a hacker.
Next, you should change the passwords for your accounts (Email.....)
Same goes for this individual, except he knows where it’s coming from…!
Posted at Microsoft:
@+
Thank you for your feedback. It's clear about the passwords; I hesitated for a long time, but now I use complex phrases that I jot down in a notebook.
However, I wouldn't be as categorical as that person.
I can't claim to know which region the hacker comes from; if he's smart, he used a virtual machine, a VPN, and other subtleties that I won’t write about.
However, without news from MS after 24 hours, I'm less optimistic about recovering the licenses.
It's been about ten days (more like 15) since Microsoft was contacted.
The stolen account has been disabled (at least that's what Microsoft says).
I sent the forms to prove my ownership of the licenses (even though I'm not sure if I'm the owner of the licenses or just a tenant).
I sent a recovery email address via a secure form.
Nothing is happening, Microsoft is sending me a ton of spam but nothing about recovering my account.
I will contact them on Monday before giving up.
Hello,
That's good news from Microsoft.
But:
Please keep waiting in the meantime Keep us posted on the follow-up.
But:
As reported by Microsoft:
Polite phrases! Same on CCM.
Surely an oversight on your part, remember next time.
==► CCM the Politeness Charter
:-)
Info:
Microsoft is in crisis right now, staff reductions are expected.
==► Layoffs at Microsoft, which will cut 10,000 employees
This may then take longer than announced to receive a response
See you later.
Thank you for the news even if it’s not good
For my part, the file is still moving forward. Today I received 2 letters stating that my file is still under review and that they are waiting for the update regarding the removal of the sensitive information provided by chat to proceed with the escalation
which means absolutely nothing but it’s progressing
♪ We move forward, we move forward, we move forward, it's obvious, we move forward ♫...
We all know the song by Alain Souchon. If you don't know it, I've included the link.
It's the refrain that Microsoft has been singing to me since last weekend. I'm sharing here a screenshot of their latest messages (actually, I received double the amount in the same language).
To summarize, the first message says:
- Don't worry, we are working on your request.
Here to summarize:
- We are working on your file but it's long and tedious
(and thanks to the intervention of
I know why)
As someone else would say: time will tell.
Best regards!
Do you know the reason why YouTube deleted your account?
Violation of Google's rules (sharing tips for better management of your PC, for example: bypassing download quotas on Google Drive, or how to add friends on a free Steam account, etc.)
It's not hacking but is perceived as such on YouTube and all other social networks.