Like the title says, I’ve got yesterday an email with a code to access my Microsoft account and that made me suspicious because I wasn’t trying to login to my account.
When I looked at the login attempts I saw that someone else was trying to access my account, I changed my password, activated TFA.
Thinking of going through and buying a physical key like yubico to further secure my account.
Any tips are appreciated.
This is normal. All of my accounts have looked like this for years. So I imagine every account with Microsoft will see this bombardment of someone trying to get in.
It's not just Microsoft - every server on the internet with an open port gets bombarded all of the time. It's just the way of the internet. So if you move your account to another platform it'll see the same bombardment as it does now.
Do you use your email addresses on websites? I find it hard to believe you don't see this when you look at it in the security page of Outlook if you use your email address for more than just emailing friends and family.
Personally my hotmail account is nearing 25 years old. I both get this and godawful amounts of spam. I'm not sure if its entirely due to age, or due to historic leaks including the email address. I would say it's normal if you have the same email as you did in the 90s.