It happens! Out of nowhere, your account gets compromised. Suddenly, hackers start emailing all your contacts—either asking for money or tricking them into clicking on malicious links to hijack their accounts too, all while pretending to be you.
If this happens, remain calm. While freaking out may be your initial reaction, thinking clearly will help you regain control much faster.
Immediate Steps to Take
1. Change Your Passwords Immediately
- Reset all your passwords, ensuring they are unique and hard to guess.
- Prioritize critical accounts such as online banking, IRS/CRA, social media, and email accounts.
- Use a password manager to generate and store strong passwords securely.
2. Alert Your Bank and Other Financial Institutions
- Notify your bank about the breach so they can monitor suspicious activity and block unauthorized transactions.
- If you have credit cards linked to the compromised account, consider freezing or replacing them.
3. Enable Multi-Factor Authentication (MFA)
- Set up MFA on all important accounts to prevent future hacks.
- Avoid SMS-based authentication, as it can be intercepted. Instead, use a Time-based One-Time Password (TOTP) method via Google Authenticator or Microsoft Authenticator.
4. Check for Suspicious Email Rules
- Hackers often create auto-forwarding rules to send your emails to an external address or delete incoming messages.
- Review and remove any unknown rules in your email settings.
5. Monitor Your Accounts
- Regularly check your bank statements and online accounts for unauthorized transactions or suspicious activity.
- Look for login attempts from unknown locations.
6. Inform Your Contacts
- Call or message your friends, clients, and colleagues to warn them about the hack.
- Advise them not to click on any suspicious emails or submit payments unless verified directly with you.
Preventive Measures for the Future
- Use Unique Passwords: Never reuse passwords across multiple accounts.
- Stay Vigilant Against Phishing: Always verify links before clicking and be cautious of unexpected emails requesting sensitive information.
- Keep Software Up to Date: Ensure your operating system, browser, and apps are updated with the latest security patches.
- Regularly Check Account Activity: Most online services offer an activity log—review it periodically for any unauthorized access.
- Secure Backup Email and Phone Number: Keep your recovery options up to date so you can regain access quickly if locked out.
Getting hacked is a frustrating experience, but acting swiftly and taking preventive measures can minimize damage and protect you from future attacks. Stay safe online!