![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi
Welcome to the Microsoft community.
If you are using Microsoft Authenticator, it means that besides the PIN, this is the most secure verification method. If someone passes this verification, Microsoft will naturally consider him as the owner of the account and allow him to perform some operations related to security information. The priority of this verification method is very high and it is unlikely to be remotely attacked. Your current situation is actually because your phone was stolen and unlocked, not because there is a problem with Microsoft’s security protection (such as caused by network attacks), but because your phone was physically taken away and passed your phone’s security protection, which led to them being able to pass Microsoft’s verification. If the Microsoft Authenticator verification is passed, Microsoft will naturally think it is you who are operating, not that your phone is lost and unlocked and the illegal elements are using this software to pass the verification. In this case, you need to contact your local police to assist you in finding the illegal elements and solving your problem through investigating the IP address and other methods.
Best regards
Tommy Jin | Microsoft Community Support Specialist