Forum Discussion

Just-Alex22's avatar
Just-Alex22
Copper Contributor
Jul 10, 2026

Microsoft Authenticator receives repeated unexpected sign-in requests from different countries.

I have received multiple unexpected Microsoft Authenticator number-matching requests over the last few weeks. The requests came from different countries (Mexico, France, and Spain), and I denied all of them. I changed my password after the first incident. My password is unique and stored in Bitwarden. I have Microsoft Authenticator enabled, and I do not use passwordless sign-in. The strange part is that these authentication requests do not appear in my Recent Activity page. Is there anything I can do to stop these requests? I came here because a support representative told me to. I appreciate all your help beforehand.

1 Reply

  • One of the reasons was account was being targeted by password spray or credential stuffing attacks. Since MFA is stopping them, your account remains protected as long as you deny all prompts. To stop the noise and gain visibility, review Entra sign-in logs, enable suspicious activity reporting, and add secondary MFA methods, even conditional access.