What to Do Immediately If You've Been Hacked

Discovering you've been hacked is stressful — your stomach drops, panic kicks in, and the worst decisions tend to follow. Whether it's a strange login alert, money missing from an account, or friends asking why you sent them weird messages, the next few hours matter more than the next few weeks. Here's a calm, ordered playbook to take back control without making things worse.

Step 1: Stay Calm and Diagnose

First, take a breath. Confirm what's actually happened: Is your email locked? Are you seeing transactions you didn't make? Are friends getting messages from your account? The response depends on what was breached. Don't immediately wipe your phone or computer — you may destroy evidence you'll need later.

Step 2: Secure Your Email First

Your email account is the master key — anyone who controls it can reset every other password you have. If your email might be compromised, fix it before anything else. From a trusted device, sign in, change the password to something long and unique, sign out of all sessions, and turn on two-factor authentication if it isn't already on. Check the "recent activity" or "security" page for any unfamiliar logins or forwarding rules. Attackers often add a hidden forward to a Gmail address they control so they can keep reading your mail even after you change the password.

Step 3: Lock Down Financial Accounts

Call your bank, credit card company, and any payment service (PayPal, Venmo, Wise) and let them know your account may be compromised. Most have a fast freeze procedure. Review recent transactions and dispute anything unauthorized. If a debit card was exposed, ask for it to be canceled and reissued. Set up real-time transaction alerts so you'll catch any future fraud within seconds.

Step 4: Change Passwords Strategically

Change passwords on the most critical accounts first: email, banking, password manager, cloud storage, work accounts, then social media. Use long, unique passwords — ideally generated by a password manager — and enable two-factor authentication everywhere it's offered. Don't reuse the same password "just for now." That's exactly how compromises spread from one site to many.

Step 5: Scan Your Devices

Run a full antivirus scan with your built-in tool (Windows Defender, XProtect on Mac, Play Protect on Android). On mobile, review installed apps and uninstall anything unfamiliar. If you suspect deeper compromise — or if a "tech support" caller had remote access — back up your important files to an external drive and consider a clean OS reinstall. It's the only way to be 100% sure.

Step 6: Warn Your Contacts

If your account was used to message friends, post publicly to let people know. A simple "I was hacked — please ignore any links or money requests from me in the past 24 hours" prevents the scam from spreading. Attackers love to ask your contacts for "urgent help" the moment they take over an account.

Step 7: Report and Document

Document the incident with screenshots, timestamps, and any unauthorized transactions. Report to your country's cybercrime authority — IC3 (US), Action Fraud (UK), Signal Spam (France), and similar bodies elsewhere. If your identity was used, contact the credit bureaus and consider a credit freeze. For work accounts, notify your IT/security team immediately — many incidents are far easier to contain in the first hour.

Step 8: Watch for Follow-Up Scams

After a public hack, you'll often receive offers from "recovery experts" promising to get your money back for an upfront fee. Almost all of them are scams targeting victims at their lowest point. Real authorities never charge fees and never ask for cryptocurrency. Take any unsolicited "help" with extreme suspicion.

Step 9: Build Back Stronger

Once the immediate fire is out, take a weekend to rebuild your security posture: a password manager, unique passwords on every site, 2FA on every important account, automatic OS and app updates, and a fresh review of which apps and services have access to your data. Most people only do this after being hacked once. Now that you have, make it the last time.