Signing in to Windows 10 with a Microsoft account allows you to easily sync settings and files between devices. It’s not mandatory (you can sign in using a local account or an Active Directory account on a corporate domain instead), but using a Microsoft account is convenient for anyone who regularly switches between Windows devices.
But that central connection point comes with security and privacy risks. How do you know whether an attacker in Kazakhstan or Vietnam has compromised your account? (See the screenshot at the top of this post.) And how do you manage sensitive details like payment information and your personal profile?