Security Experts:

Connect with us

Hi, what are you looking for?


Identity & Access

Microsoft Brings Security Notifications to Authenticator App

Microsoft has updated its Authenticator application to provide users with security notifications whenever suspicious activity is detected on their accounts. 

Microsoft has updated its Authenticator application to provide users with security notifications whenever suspicious activity is detected on their accounts. 

Available for Android, iOS, and Windows Phone, the Microsoft Authenticator app helps users sign into their accounts when two-factor verification is enabled, either by providing a verification code or by accepting the login via a notification. 

The app can also be used for phone sign-in, which only requires a username and the mobile device with a fingerprint, face, or PIN (without having to provide a password).

In September 2018, support for Microsoft Authenticator was also added to Azure Active Directory, allowing customers to easily sign into Azure AD connected apps.

The newly announced security notifications feautre, Microsoft’s Alex Simons says, will provide users with additional confidence and visibility into their personal Microsoft account activities. 

Security notifications will be delivered for important events, allowing users to view the account activity and immediately take actions to protect their accounts if needed. 

“The goal of these notifications is to increase awareness and help you react quickly if there is unexpected activity,” Simons explains. 

All users of the Microsoft Authenticator app can receive these security notifications. All they need to do is the latest app version available for them and a personal Microsoft account set up on the Microsoft Authenticator app.

“You’ll automatically start receiving alerts when we detect sensitive or unusual actions on your account, such as changing your password, adding a new phone number or email addresses, or signing in from a new device or unusual location,” Simons says. 

When receiving a notification that raises concerns, a user can quickly view account activity and change their password, update the security contact information, or perform other actions to protect their account. 

Related: Microsoft Boosts Azure Security With Array of New Tools

Related: Microsoft Adds New Tools to Azure DDoS Protection

Related: Microsoft to Launch New Cross-Platform MFA Mobile Apps

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Expert Insights

Related Content

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Identity & Access

Strata Identity has raised $26 million in a Series B funding round led by Telstra Ventures, with additional investment from Forgepoint Capital, Innovating Capital,...

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Application Security

Google’s Threat Analysis Group (TAG) has shared technical details on an Internet Explorer zero-day vulnerability exploited in attacks by North Korean hacking group APT37.

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Application Security

Software maker Adobe on Tuesday released security patches for 29 documented vulnerabilities across multiple enterprise-facing products and warned that hackers could exploit these bugs...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...