Home » Blog » What to Do If Your Account Has Been Hacked (UK)

Account hacked help

Account hacked? What to do next in the UK

If your email, social media, shopping or online account may have been hacked, act quickly. Recover access, change passwords, check recovery details and secure any linked accounts.

UK-focused guidance Plain English Account recovery steps No panic

Quick answer

If an account has been hacked, recover access through the official app or website, change the password, turn on two-step verification and check recovery email addresses, phone numbers, devices and recent activity. If the same password is used elsewhere, change it on those accounts too.

  • Use the official recovery page for the account.
  • Change the password to something new and unique.
  • Turn on two-step verification where available.
  • Check recovery email, phone number and trusted devices.
  • Warn contacts if scam messages may have been sent from your account.

Which account is affected?

Start with the account that controls the most access. Email is often the priority because it can reset passwords elsewhere.

Email account

Secure email first if possible. It may be used to reset passwords for banking, shopping and social media accounts.

Start recovery

Social media account

Recover access, check messages and warn contacts if scam posts or messages may have been sent.

Social account steps

Shopping or payment account

Check orders, addresses, saved cards and recent activity. Contact the provider if anything looks wrong.

Money risk steps

Step-by-step guidance

Work through these in order. If you cannot access the account, use the provider's official recovery route.

1

Recover access through the official route

Go directly to the real website or app. Do not use links from suspicious messages. Follow the provider's recovery steps.

2

Change the password

Use a new, unique password. If that password was used anywhere else, change it on those accounts too.

3

Turn on two-step verification

Use two-step verification or multi-factor authentication where available. This makes it harder for someone else to get back in.

4

Check recovery details and devices

Review recovery email addresses, phone numbers, trusted devices, connected apps and active sessions. Remove anything you do not recognise.

5

Check recent activity

Look for messages, posts, orders, password changes, new addresses, payment changes or login alerts you do not recognise.

6

Warn people if needed

If scam messages may have been sent from your account, warn contacts not to click links, send money or reply to unusual messages.

If money or payment details may be at risk

Some hacked accounts can be used to buy goods, change payment details or access other services.

Check saved cards and orders

Review recent orders, saved payment methods, delivery addresses and refunds. Contact the provider if anything looks wrong.

Contact your bank if needed

If bank or card details may be exposed, contact your bank using your banking app, card number or official website.

Secure your email

Email access can help someone reset other accounts. Treat it as a priority if it may be compromised.

Check social messages

Look for messages sent to friends, family or followers. Warn them if suspicious links or requests may have been sent.

Important: Cleverways is educational guidance, not official account recovery or security advice. Use the official recovery route for the affected account and contact your bank promptly if money may be at risk.

If something else happened

These guides may help if the account issue involved a suspicious link, payment or bank call.

I clicked a link

Close the page, check what you entered and secure any account involved.

Read the link guidance

I sent money

Contact your bank or payment provider quickly and keep evidence of the transfer.

Read the money guidance

A bank called me

If someone called claiming to be from your bank, pause and contact your bank through a trusted route.

Read the bank call guidance

Hacked account FAQs

What should I do first if my account is hacked?

Recover access through the official website or app, change the password and turn on two-step verification. Then check recovery details, devices and recent activity.

Should I change passwords on other accounts?

Yes, if you used the same or similar password elsewhere. Start with email, banking, shopping and social media accounts.

What if scam messages were sent from my account?

Warn your contacts not to click links, send money or reply to unusual messages. Keep screenshots if you need to report what happened.

What if I cannot get back into the account?

Use the provider's official account recovery route. Avoid anyone offering paid recovery help through messages, comments or adverts.

Want printable scam-safety checklists at home?

The UK Scam Safety Toolkit gives you practical checklists and action sheets to keep at home, including steps for suspicious messages, bank calls, online shopping scams and family conversations.

Keep the 10-second scam check nearby

The safest step is often a pause. Download the free Cleverways guide and keep a simple check nearby for suspicious messages, calls, emails and payment requests.

Last reviewed: May 2026. Cleverways provides practical educational guidance and signposts trusted UK routes.

Scroll to Top