Skip to content
Vectel
Support/Security

My phone is flooded with MFA pushes I did not request

Someone has your password and is hoping you tap approve to make the spam stop. Do not.

Try this first

  1. 1Approve nothing. Close the Authenticator app, let the pushes pile up.
  2. 2Change your password from another device. The attacker already has the old one, that is why the spam is happening.
  3. 3Turn on number matching for your tenant (Entra > Security > Authentication methods > Microsoft Authenticator). Forces typing a number, blind approval becomes impossible.
  4. 4Check Entra sign-in logs for the timestamps. Record IP and country for the incident report.
  5. 5Tell IT even if you approved nothing. Often part of a broader campaign against multiple colleagues.

When to bring us in

Did you accidentally approve: treat as account takeover. Revoke sessions, check mailbox rules, call us for log analysis.

See also

None of the above fits?

Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.

Who are you?

For the AI question we need your email and company, so we can follow up if the AI gets stuck, and to prevent abuse.

Limited to 2 questions per hour and 5 per day, kept lean so the AI stays useful. For more, contacting us directly works better for you and us.

Or skip the DIY entirely

Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.

Bring us inHow Managed IT works