• LifeInMultipleChoice@lemmy.world
    link
    fedilink
    arrow-up
    4
    ·
    edit-2
    10 months ago

    Local accounts, yes. How are you bypassing Microsoft accounts with 2 factor authentication enabled? Unix and Mac passwords were the same for local accounts before.

    Easiest way right now would be to acquire a username password to get into their phone provider, say Verizon. Then log into their Verizon account and move their phone number to a new phone. (this will only require knowledge of their security questions, also a phone not purchased by a card or registered to you if you don’t want it traceable)

    Once done then you can reset the password using the unknown password to their Microsoft account using the 2 factor that sends to their phone number…maybe.

    Especially on windows 11 we don’t stand much of a chance getting passed.

    Likely easier to pick up the password book they wrote all of their passwords down in and accessing them. (Performed by most people over 50 I know)

    Edit: also, you will find their Facebook password written there haha

    • cm0002@lemmy.world
      link
      fedilink
      arrow-up
      3
      arrow-down
      1
      ·
      10 months ago

      Assuming bitlocker isn’t enabled (Which it probably isn’t since it’s still not default yet AFAIK) boot Linux live USB > access files under user folder on disk

      • LifeInMultipleChoice@lemmy.world
        link
        fedilink
        arrow-up
        3
        ·
        edit-2
        10 months ago

        Bitlocker is enabled by default, requiring tpm. Which internal tpm is used by most all devices. Also you won’t get into any commercial devices as the bios will be locked by password, so booting by USB will not happen.

        Source: Microsoft, “On supported devices running Windows 10 or newer BitLocker will automatically be turned on the first time you sign into a personal Microsoft account (such as @outlook.com or @hotmail.com) or your work or school account.”

        Alt source: I have spent years working for DOD and other IT positions

        • cm0002@lemmy.world
          link
          fedilink
          arrow-up
          1
          ·
          10 months ago

          Oh that’s probably why I never ran into it, I only do local accounts because fuck Microsoft online accounts lmao

          • LifeInMultipleChoice@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            edit-2
            10 months ago

            Yeah, I don’t use Microsoft online accounts, but “work or school accounts” come up in many jobs because Windows is still used by many companies. I want to get certified or such for Googles BS (edit: bullshit not fancy terms) just because so many companies hire for transitions from Microsoft to Google or vise versa. It shouldn’t be a hard transfer… But I don’t have the time or money at the moment, so the $1000 for the course for certs sounds like a pain… But the $70-75 an hour for remotely transferring their systems and supporting it sounds like it is worth it. If you know anyone with background on the Google side of it please let me know if the certification is a waste of time.