If your sign in is unusual or suspicious, you will be prompted to secure your account: you can prove it's really you by passing a multi-factor authentication (MFA) prompt, and in some cases, you may be asked to reset your password.
How to dismiss sign-in or account risk
When unusual or suspicious activity is detected, you will get one of two messages:
-
Help us protect your account: You will be asked to complete MFA using one of your account verification methods, to prove that it's really you.
- This message appears when something unusual about the sign-in is detected, e.g. you are signing in from a new location or a new device.
-
Your account is at risk: You will be prompted to reset your password using one of your account verification methods.
- This message appears if suspicious account activity has been detected, e.g., your password was found in a data breach, or you visited a malicious link.
Once you complete the MFA prompt (or reset your password), you will regain access to your account.