Today we wanted to discuss a recent change that Microsoft has made to its Multi-Factor Authentication (MFA) number-matching process. In the past, Microsoft’s MFA system matched the phone number associated with a user’s account to the phone number they provided for authentication. However, this method was not foolproof as users could use a different phone number for MFA or have their phone number stolen or spoofed.

To address these concerns, Microsoft has updated its MFA number matching process. It will now require you to type in a presented number within the Microsoft Authenticator prompt. This number must match what is displayed on the login window to grant you access. This change is part of Microsoft’s ongoing efforts to enhance the security of its products and services.

With the rise of cyber threats and attacks, it is crucial for companies to continually evaluate and improve their security measures to protect their users’ sensitive information. We hope you found this update informative and useful. As always, if you have any questions or concerns, please feel free to contact us.

How number matching works in multifactor authentication (MFA) push notifications for Microsoft Authenticator – Microsoft Entra | Microsoft Learn