What to Do If You Get Hacked
A simple step-by-step recovery plan for everyday people who think an account, device, card, or login may have been compromised.
Most people don’t think about getting hacked until something feels off.
A weird login alert. A password that suddenly doesn’t work. Messages sent that you didn’t write.
That moment of “wait… what just happened?” — that’s not the time to ignore it.
Getting hacked feels violating. It’s stressful, and sometimes embarrassing. That’s normal. But the fastest way through it is to act — not freeze.
If you even suspect something is wrong, assume it is and move fast. This is your cleanup plan. Step by step, plain English, no tech degree required.
First: Don’t Panic, But Don’t Wait
You don’t need to figure everything out immediately. But you do need to act quickly. The longer someone has access, the more damage they can do — especially if your accounts are connected.
If money was taken, your identity documents were exposed, or your bank/card information may be involved, contact your bank first.
You can clean up passwords after you stop the financial damage from spreading.
Work through your accounts in this order. Highest risk first:
| Priority | Account Type | Why It Matters |
|---|---|---|
| 1 — Critical | Password resets go here. Whoever controls your email can reset everything else. | |
| 2 — Critical | Banking & payment apps | Direct access to your money. |
| 3 — High | Social media | Can be used to scam your contacts or spread malware. |
| 4 — High | Shopping accounts | Saved payment methods and purchase history are valuable targets. |
| 5 — Medium | Any account with a reused password | If one was breached, attackers will try it everywhere else. |
Before You Do Anything — Take Screenshots
Before you start changing passwords or logging out devices, pause for 60 seconds and document what you see.
- Unknown devices logged into your account
- Suspicious login locations
- Email forwarding rules you didn’t set
- Unauthorized transactions
- Messages sent from your account that you didn’t write
This documentation matters more than you might expect. You may need it to dispute charges with your bank, report fraud, or prove your case during platform account recovery.
Evidence disappears the moment you start making changes.
What If You’re Already Locked Out?
This is one of the most common scenarios: the attacker already changed the password. Don’t panic. You still have options.
- Use backup codes if you saved them when setting up 2FA.
- Use account recovery through your backup email address or phone number.
- Use the official recovery form for the platform.
- Contact platform support directly if automated recovery fails.
- Do not use third-party “account recovery” services.
Warning: Never pay a third party to “recover” a hacked account. Official platform recovery is free. If someone is charging you, there is a good chance they are scamming you.
Only use recovery links from the official platform website. Avoid sponsored results, random blogs, or strangers offering to help in comments or DMs.
Change Your Passwords
Start here. Immediately.
Change passwords for your:
- Banking and financial accounts
- Social media accounts
- Shopping accounts
- Payment apps
If you reuse passwords, assume attackers are trying your credentials everywhere right now.
Use something new, strong, and completely different. Don’t recycle an old one. Don’t make a tiny tweak. Make it entirely new — at least 12 characters, mixing letters, numbers, and symbols. A password manager can generate and store these for you.
Check if your data was exposed: Go to haveibeenpwned.com and type in your email address.
This can help you see whether your email appeared in a known breach and which accounts may need extra attention.
Log Out of All Devices
Changing your password may not immediately kick an attacker out of an active session. You need to do this manually.
Go into the settings of each important account and look for:
- Logged-in devices
- Active sessions
- Recent activity
- Where you’re signed in
- Trusted devices
Log out of anything you don’t recognize. Use “Sign out of all devices” if the option exists — it’s the nuclear option, and right now that’s fine.
Turn On Two-Factor Authentication Everywhere
If you didn’t have two-factor authentication turned on before, now is the moment.
Add it to every account that supports it:
- Banking
- Social media
- Shopping accounts
- Payment apps
- Cloud storage
Authenticator app vs. text message: When you have the choice, use an authenticator app like Microsoft Authenticator or Google Authenticator instead of SMS codes.
Text message codes are better than nothing, but authenticator apps are usually stronger.
Check for Account Changes
Go into each account’s settings and look for anything that was changed without your knowledge.
- Email address or phone number on the account
- Recovery contact information
- New login locations or unrecognized devices
- Linked or connected apps you didn’t authorize
- Email forwarding rules or filters you didn’t create
That last one is critical. Attackers sometimes add email forwarding rules so they keep reading your messages even after you change your password and lock them out.
If you see any rule you didn’t create, delete it immediately.
Look for Financial Activity
Check your bank accounts, credit cards, payment apps, and shopping accounts carefully. Look for anything unfamiliar, even small charges.
Attackers sometimes test with a tiny charge before going bigger.
If you spot something suspicious:
- Contact your bank or card provider right away
- Freeze or lock the account if needed
- Dispute unauthorized charges
- Change the password for that account
- Remove saved payment methods from compromised accounts
Credit cards usually offer better fraud protection than debit cards. This is where that matters.
What About a Credit Freeze?
If your Social Security number, bank details, tax documents, or other identity information may have been exposed, freeze your credit.
It’s one of the strongest protections available, and it is free. It does not stop you from using your current credit cards or bank accounts.
Credit Freeze
- Blocks anyone from opening new credit in your name
- Strongest option
- Free at all three bureaus
Fraud Alert
- Flags lenders to verify your identity
- Easier to set up but weaker
- Does not block applications outright
You must freeze your credit at all three bureaus separately:
Scan Your Devices
If you clicked something suspicious — a link, an attachment, or a pop-up — run a security scan on both your phone and your computer.
Many free tools can help, including Windows Security and Malwarebytes.
While you’re at it, update everything:
- Your phone
- Your laptop
- Your browser
- Your apps
- Your operating system
Updates are not just new features. They patch security holes that attackers already know about and actively exploit.
Warn Your Contacts
If your email or social media was compromised, messages may have already been sent that looked like they came from you.
Those messages may include links to scams, requests for money, fake emergencies, or malware. Your contacts may not know it wasn’t you.
“Hi — my account may have been compromised recently. If you received any unusual messages or links from me, please don’t click them. I’m cleaning everything up now. Sorry for any confusion.”
It might feel embarrassing. Send it anyway. Stopping the scam from spreading to people who trust you matters more than the awkwardness.
Report It
You may not hear back right away, but filing a report creates a paper trail. It also helps authorities track patterns across thousands of similar incidents.
- FTC: Report fraud at reportfraud.ftc.gov
- FBI Cybercrime: File a complaint at ic3.gov
- Identity theft recovery: Use IdentityTheft.gov if your identity information may have been exposed.
- The platform: Report the compromised account directly to Instagram, Google, Facebook, Apple, or whichever platform was affected.
- Local police: File a report if significant financial fraud occurred. Your bank or insurance company may require a police report number.
Don’t Go Back to the Same Habits
If you go back to reused passwords and old shortcuts, it can happen again.
The good news is that the habits that prevent this are not complicated. They just have to become automatic.
- Use a different password for every account
- Turn on 2FA everywhere
- Pause before clicking links, especially in urgent emails or texts
- Be skeptical of messages asking for money, credentials, or personal information
- Keep your devices and apps updated
- Do not save payment info on random or one-time-use websites
Recommended reading: Once you’ve cleaned things up, read Cyber Tips & Tricks Everyone Should Know (Before They Get Scammed) on VeriSecure.tech to build the habits that keep you protected going forward.
Real Talk: Most Hacks Start Small
It’s usually not a sophisticated attack from a shadowy hacker.
It’s a reused password. A fake link that looked close enough. A rushed click at the wrong moment. A feeling that something was off — and choosing to ignore it.
That’s all it takes.
The scariest part isn’t how advanced these attacks are. It’s how preventable they are with a few simple habits.
Quick Recovery Checklist
Work through this top to bottom. Check each item off as you go.
Immediate — Before You Change Anything
- Take screenshots of suspicious activity, unknown devices, forwarding rules, and unauthorized transactions
- If locked out, use platform recovery tools or backup codes, not third-party services
Passwords & Access
- Change your email password first
- Change banking and payment app passwords
- Change social media and shopping passwords
- Check haveibeenpwned.com for your email address
- Log out of all active sessions on every important account
Security Settings
- Turn on 2FA everywhere
- Use an authenticator app when possible
- Verify recovery email addresses and phone numbers are still yours
- Remove any unknown or unrecognized devices
- Check for email forwarding rules or filters you didn’t create
Financial & Identity
- Review bank accounts, credit cards, and payment apps for suspicious activity
- Dispute any unauthorized charges with your bank or card provider
- Freeze your credit at Equifax, Experian, and TransUnion if identity info was exposed
Devices & Contacts
- Run a security scan on your phone and computer
- Update your operating system, browser, and apps
- Warn your contacts if messages were sent from your account
Reporting
- Report fraud to the FTC
- File a cybercrime complaint with IC3
- Use IdentityTheft.gov if identity information may have been exposed
- Report the compromised account directly to the platform
- File a police report if significant financial fraud occurred
Final Thoughts
Important Note
This guide is for general educational information only. It is not legal, financial, cybersecurity, or identity-theft recovery advice specific to your situation.
Cyber incidents vary. Following these steps may help reduce risk and limit damage, but no checklist can guarantee account recovery, prevent financial loss, or remove every security threat.
If money was stolen, identity documents were exposed, legal issues are involved, or you cannot recover an account, contact the official platform, your bank or card provider, the credit bureaus, law enforcement, or a qualified professional.
Use official recovery and reporting websites only. For identity theft recovery, the FTC provides step-by-step help through IdentityTheft.gov, and fraud can be reported through ReportFraud.ftc.gov.
Free Printable
Need the Steps in One Place?
Print or save the starter checklist so you can follow the recovery steps in order.
Open the Printable Checklist