scarlet chasm
Around May 1, 2024 my Microsoft email was hacked and starting May 2, 2024 hundreds, perhaps thousands, of emails were sent from my account unknowingly in violation of Microsoft’s terms of service. I became aware of the incident on Thursday May 9, 2024 about a week later via a notification on another account I have with Microsoft. I believe I originally had two factor authentication set up, however I cannot prove it at this point. Upon realizing the problem, I changed my password, signed out of all devices, verified two factor authentication and removed the ability to use the Microsoft Authenticator app to access my account. I believe the authenticator app is how my account was breached without my knowledge as this was something I was not aware of or used at the time. Even after updating this information suspicious activity continued as I could see dozens of unsuccessful login attempts per day from locations I did not recognize on my account until Thursday May 16, 2024. Many days within this week I would be unable to access my account still as the password would be changed or reset too many times thus putting in place a 24 hour ban to requesting password resets. While nothing was being sent from my account it was apparent a breach was in still progress. To resolve this issue, I created an alias for sign in purposes only and since completing this step all suspicious activity and unsuccessful login attempts from unknown locations has stopped.
Due to the violation of Microsoft’s terms of service and because this account is associated with my Xbox Live profile my Xbox account became permanently banned May 7, 2024. I appealled the case on May 10, 2024 and it was denied. I have taken several actions since, which I can detail for those interested, to try to resolve the issue without progress. I understand I may not be able directly contact the Enforcement Team through Discord, but I'm hoping someone has had a similar issue and has experience to help me resolve mine.
supple fjord