Last updated: January 2023
If you suspect a password has been compromised, follow these steps to secure your accounts:
Check if your email appears in known data breaches using services like Have I Been Pwned.
Change the compromised password immediately, along with any similar or reused passwords.
Add two-factor authentication to prevent unauthorized access even if passwords are compromised.
Check login history and connected devices for suspicious activity.
Change security questions and answers as they may have been exposed.
If email or social media is compromised, warn contacts about potential phishing attempts.
Review accounts that use the compromised credentials for login ("Sign in with Google/Facebook").
Run antivirus scans to check for keyloggers or other credential-stealing malware.
Watch for unauthorized transactions if financial accounts were potentially affected.
Use our password strength checker to ensure new passwords meet security standards.