Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Identity & Access

Microsoft Brings Security Notifications to Authenticator App

Microsoft has updated its Authenticator application to provide users with security notifications whenever suspicious activity is detected on their accounts. 

Microsoft has updated its Authenticator application to provide users with security notifications whenever suspicious activity is detected on their accounts. 

Available for Android, iOS, and Windows Phone, the Microsoft Authenticator app helps users sign into their accounts when two-factor verification is enabled, either by providing a verification code or by accepting the login via a notification. 

The app can also be used for phone sign-in, which only requires a username and the mobile device with a fingerprint, face, or PIN (without having to provide a password).

In September 2018, support for Microsoft Authenticator was also added to Azure Active Directory, allowing customers to easily sign into Azure AD connected apps.

The newly announced security notifications feautre, Microsoft’s Alex Simons says, will provide users with additional confidence and visibility into their personal Microsoft account activities. 

Security notifications will be delivered for important events, allowing users to view the account activity and immediately take actions to protect their accounts if needed. 

“The goal of these notifications is to increase awareness and help you react quickly if there is unexpected activity,” Simons explains. 

All users of the Microsoft Authenticator app can receive these security notifications. All they need to do is the latest app version available for them and a personal Microsoft account set up on the Microsoft Authenticator app.

Advertisement. Scroll to continue reading.

“You’ll automatically start receiving alerts when we detect sensitive or unusual actions on your account, such as changing your password, adding a new phone number or email addresses, or signing in from a new device or unusual location,” Simons says. 

When receiving a notification that raises concerns, a user can quickly view account activity and change their password, update the security contact information, or perform other actions to protect their account. 

Related: Microsoft Boosts Azure Security With Array of New Tools

Related: Microsoft Adds New Tools to Azure DDoS Protection

Related: Microsoft to Launch New Cross-Platform MFA Mobile Apps

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Compliance

Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

Email Security

Many Fortune 500, FTSE 100 and ASX 100 companies have failed to properly implement the DMARC standard, exposing their customers and partners to phishing...

Funding/M&A

The private equity firm merges the newly acquired ForgeRock with Ping Identity, combining two of the biggest names in enterprise IAM market.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...