Forum Discussion

Juan3's avatar
Juan3
Copper Contributor
Dec 17, 2025

Someone changed my email but i still have access to my account

My account got hacked but the hacker didn't change my the password, now i'm stuck with this weird email account from russia and dont know what  to do... I tried the Recovery form but i tried too many times and now doesn't let me try anymore. What can i do? I'm scared for my account

email
hacked account

1 Reply

  • NikolinoDE's avatar
    NikolinoDE
    Platinum Contributor
    Dec 22, 2025

    You can try to act in this order as quickly as possible; time is a big factor in such situations.

    If:

    • Your password still works
    • You can still sign in
    • But a new email address (from Russia) was added or set as primary

    Then:

    • The attacker likely added an alias or changed the primary alias
    • They may be waiting before locking you out

    You are in a time window where you can still secure the account.

     

     

    DO THIS NOW (in order, don’t skip steps)

    Secure the account immediately

    Go to:
    https://account.microsoft.com/security

    • Change your password (use a new, strong one)
    • Choose Sign me out everywhere
    • Turn on Two-Step Verification (Authenticator app preferred)

    Do this even if the password “wasn’t changed”.

     

    Remove the attacker’s email / alias

    Go to:
    Your info → Manage how you sign in to Microsoft

    • Identify the Russian email
    • Remove it
    • Make sure YOUR email is:
    • Verified
    • Set as Primary alias

    If Microsoft asks you to confirm → do it immediately.

     

    Change password on EVERYTHING ELSE

    If this Microsoft account was used for:

    • Email
    • Gaming
    • Pay Pal
    • Other logins

    Change those passwords too.
    Assume the old password is compromised.

     

    If the recovery form is locked due to too many attempts:

    • Do NOT keep retrying
    • It resets automatically after time (usually 24–48 hours)

    But since you still have access, manual recovery is NOT your primary path right now.

     

    If Microsoft blocks alias removal

    If you cannot remove the attacker’s email:

    1. Go to
    https://support.microsoft.com/account-billing

    2. Choose:

    • Account & profile
    • Compromised account

    3. Request chat or call support

    4. Say clearly:

    “An attacker added a new alias to my Microsoft account.
    I still have access and need the alias removed immediately.”

    This gets routed differently than normal recovery.

     

    Bottom line

    You are not locked out yet

    This is a known Microsoft account takeover pattern

    Acting now can fully secure the account

    Waiting increases the risk dramatically

     

    My answers are voluntary and without guarantee!

     

    Hope this will help you.

     

    Was the answer useful? Mark as best response and like it!

    This will help all forum participants.

Resources