If you are among the people who received a ” Microsoft account security alert” this month, please read carefully.
ZDNet reports that all accounts were scanned by Microsoft’s threat research team between January and March this year. The accounts were compared to a database of over three billion sets of leaked credentials and 44 million matches were found.
This is a major security issue, and users where matches were found, were forced to reset their passwords. Administrators will also receive alerts requiring them to enforce a credential reset on the enterprise side.
Personally, I thought that the mail I got from Microsoft was a poor phishing attempt, but after the news was reported I quickly changed the password on my Microsoft account.