Is anyone else annoyed by the Microsoft's Account two-factor authentication?
I've had numerous customer almost get locked out of their account already. I understand that Two-authentication is great everything but the following is the issue I have with the way Microsoft is doing it.
One day I got a call about a woman who all of the sudden started getting this message (the 1st photo). They wouldn't let her enter her account until she would validate she was the owner of her own account and enter the code they would send her. The issue was she was at the lakes for the summer and the recovery email she had on the account was from her home ISP which was currently disconnected while gone.
So the best we could do is create her a new gmail address which she could use (on photo 2) just to authenticate her account and to change her security information. They say that it takes 30 days for this to take in effect.
But what about this
Hacker, hacks an account which isn't used a lot. They tell Microsoft, I cant authenticate with the email on file, use this one. So he enters his email address and they send the hacker a link which he clicks and resets the security information. Now normally it takes 30 days for this to take in effect but the person who's account he logged into doesn't use it once every 60 days.
It's just something about how the implicated their two factor authentication which just annoys me.