"Help! My online account was hacked. What should I do?"
We've all experienced that stomach drop feeling when we realize that something is wrong. When your online account has been hacked or compromised, it can feel like the end of the world. However, now that you know something is wrong, you can act on it. Follow the steps below to get back online, and keep in mind that you can always contact us for questions, guidance, or assistance.
1. Take a deep breath
The first, and most important thing, is to take a deep breath. You're not the first person to experience this problem, and you won't be the last. Panic will probably just make things worse. So take a deep breath, grab a cup of coffee, and let's get to the next step.
2. Assess the scope of the situation
Next, it's important to figure out how much of your account, or accounts, has been impacted. For example, ask yourself the following questions:
- How do I know my account has been hacked? If I received a text or notification, can it be trusted?
- How many of my accounts have been impacted?
- Do I still have access to my account? Or am I locked out?
Sometimes a notification that you have been hacked is actually the attackers attempting to access your account. For example, imagine that you get a text or a pop up message stating your account has been hacked and that you should urgently call a number. This could be a scam. Calling that number may route you to someone who asks for your password or asks you to download and install something, thus providing them with access to your account or device.
It's important to take a step back and figure out whether you can trust the source of the notification. When in doubt, look up the actual company phone number and contact them. Or you can always contact us for assistance.
3. Reset your password (if you can) and delete any downloaded files/programs
If you still have access to your account, then the next step should be to reset your password. This ensures that whoever accessed your account no longer has the correct password. Once this is done, you should be able to move on to the next step.
If you do not have access to your account, or your locked out, then you should try to use the "forgot my password" option when logging in (if there is one). If that is not available, or it is not working, then you will need to contact the account provider and ask for their assistance.
After changing your password, it's also a good idea to delete any suspicious files or programs that you may have recently downloaded. This is a precaution to ensure there aren't any malicious files still stored or running on your device. If you still have concerns, please contact us for a more thorough review and investigation.
4. Assess the damage and begin cleanup
Once you have changed your password and gained (or regained) access to your account, then the next step is to assess the damage. How much damage was done, or could have been done? Once you have thought about it, it's time to begin reverting or cleaning up after the attackers.
For example, if your social media account was hacked, then you should review and delete any recent posts or messages that the attackers may have sent. It is also recommended to notify your online friends or connections that your account was recently hacked, so they can be extra cautious of any suspicious messages they may have received (or will receive).
If your hacked account involved or contained any financial information, then you should contact your financial institutions to notify them of the situation. This will ensure that your financial institutions are aware and can help protect you, as necessary.
5. Improve your online account security
Finally, now that you have resolved the immediate concern, it is important to think about what happened and how you can better protect yourself in the future. For example, the following actions can all help reduce the chances of having your account hacked or compromised:
- Enable multi-factor authentication on your accounts (read more).
- Closely review the sender of an email before clicking on any links or attachments.
- Don't navigate to suspicious websites or open suspicious links, attachments, or files.
- Use a different password for each online account.
- Enable security notifications on your accounts, where possible.
When in doubt, please contact us at FGM Technology Services. We can provide a customized quote and help with your questions, concerns, or issues.
