Microsoft: 99.9% of compromised accounts did not use multi-factor
-
Comparing 2FA to a plague just shows that you do not care if your accounts will be hacked.
I do not, I only use it, when it is forced, like on steam. I use Password123 on 95% of my accounts, just for fun. 3 times it has been stolen according to haveibeenpwned and not a single account was ever hacked. One of the reason I do not like Microsoft is, that it keeps record of previous passwords. I had to change it once and it did not allow me to reuse Password123 afterwards, not even Password321, it was against password policy.
-
-
I do not, I only use it, when it is forced, like on steam. I use Password123 on 95% of my accounts, just for fun. 3 times it has been stolen according to haveibeenpwned and not a single account was ever hacked. One of the reason I do not like Microsoft is, that it keeps record of previous passwords. I had to change it once and it did not allow me to reuse Password123 afterwards, not even Password321, it was against password policy.
If you don't like something that's fine and that's your right. But some of your reasonings are.... odd 
-
Last few weeks my account has been hit HARD by hackers who all want my account for dubious reasons. From really around the world hackers flock to my account to get their greedy hands on it. But they won't succeed because 2FA works like a charm. Few years ago I didn't had 2FA but after one hack (suspicious activity was noticed) my account went on full 2FA! And never went down again afterwards. Hopefully it stays that way because first the hacker has to use my PHONE to get in... and they don't have my PHONE. Do they? 
(all their sych work for nothing!)
-
![]()
Here in Denmark we have something called "NemID" I guess it will be "EasyID" in English. It works in 3 different ways. First you type your username and a password, then 1 of 3 things happen
1. method is a little card with 132 pincodes, and when you use it the login site is giving you a 4 digit pincode and on the card you find this 4 digit code and then answer with the 6 digit-code next to it. The code is only valid 1 time. When there are about 20 codes left on the card, you will receive a new one for free.
2. method is a little device you can attach to your carkey f.i. It gives a single new pincode for every login, and again every match is ony working 1 time, so no idea in key-mapping this.
3. method is using your phone. After using your username and password, an app on your phone (you will have to be logged in to this app too), is receiving data, and then let you aprove login with a slide on the screen.
methods 1 and 3 are free to use for everybody.
Sounds very complicated when put in writing, but it works very well in daily life. It is used for banks and all communication with f.i. tax authorities, police and other government agencies, insurence, health, hospitals, unions.
-
-
My account was hacked and used for spam about 18 years ago. It took almost a month for ms to clear my account and let me have it back.
-
My account was hacked and used for spam about 18 years ago. It took almost a month for ms to clear my account and let me have it back.
Users had Microsoft Accounts 18 years ago? 
-
Users had Microsoft Accounts 18 years ago?
I have an email account that I setup on a television/internet console, before I purchased my first computer. It is an older MSN mail account. It may not be quite that old, but close.
-
Got it - MSN Email account
-
Strangely the only account I have ever, had hacked, was my Microsoft account where purchases were made.
Luckily I caught it almost instantly and stopped all transactions. None the less, it is the only one in 30+ years, so perhaps, Microsoft does have a bit more it could do on it's end.
-
-
Strangely the only account I have ever, had hacked, was my Microsoft account where purchases were made.
Luckily I caught it almost instantly and stopped all transactions. None the less, it is the only one in 30+ years, so perhaps, Microsoft does have a bit more it could do on it's end.
Why not your end? If you had 2FA/MFA on that account you wouldn’t be posting here about it.
Quote