Hacked account - attacker changed 2FA/Authenticator and recovery email, recovery form ignored

Pongpon MOOMON 0 Reputation points
2026-07-15T14:27:38.7366667+00:00

My Microsoft account was hacked. The attacker changed the password, set up their own Authenticator app, and changed the recovery email — so I no longer have access to any of the current verification methods.

I submitted the account recovery form (acsr) with as much accurate detail as I could provide, but received an automated reply saying my request was ignored, since the system detected that two-step verification is currently enabled on the account (even though that 2FA now belongs to the attacker, not me).

I do have purchase history that could help verify ownership — an active Xbox Game Pass subscription and another Xbox purchase, both billed to the same payment card. I'm just not sure how to proceed when the current 2FA method is controlled by someone else.

Has anyone successfully recovered an account in this situation? Is there another recovery path when the attacker owns the current 2FA, or a way to get connected with a human agent who can look into this specific case?

Outlook | Web | Outlook.com | Account management, security, and privacy

1 answer

Sort by: Most helpful
  1. Victor1-V 10,245 Reputation points Microsoft External Staff Moderator
    2026-07-16T07:52:36.8+00:00

    Hello Pongpon MOOMON,

    I understand that the attacker changed the password, recovery email, and Authenticator method, leaving you unable to complete two-step verification.

    Please note that this is a user-to-user forum, so contributors cannot access account records, verify ownership, remove two-step verification, or restore the account.

    When two-step verification is enabled and none of the registered verification methods are accessible, the standard recovery form cannot bypass that protection. Support agents are also not permitted to send password-reset links or directly change an account’s security information. Purchase receipts and billing details may help document ownership if requested, but they do not guarantee recovery or override the security requirements. See Help with the Microsoft account recovery form.

    Since you have already attempted the available recovery process, contact Microsoft Support for account-specific guidance:

    1, Visit the Microsoft Support contact page: Contact - Microsoft Support  

    2, In the search bar provided on the page, type "Account recovery" and press Enter.  

    3, Click on the "Get Help" button that appears.  

    4, Scroll down the page until you see and click on the "Contact Support" option.  

    User's image

    5, When prompted to select your product or service, choose "Other Products".  

    6, For the category, choose "Manage account security".  

    User's image

    7, Look for and click on "Chat with a support agent in your web browser".  

    User's image

    8, Confirm your personal email when prompted - this is the email Microsoft will use to communicate with you during and after the support session.  

    User's image

    9, When connected, clearly explain your situation. Be concise but include all relevant details.  

    The available contact options may vary by region and sign-in status, and the agent must still follow the same account-security restrictions. However, this is the appropriate channel to ask whether any account-specific review option remains available.

    I hope you are able to reach the appropriate support team through these steps.

    Was this answer helpful?

    0 comments No comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.