Email account
Secure email first if possible. It may be used to reset passwords for banking, shopping and social media accounts.
Start recoveryAccount hacked help
If your email, social media, shopping or online account may have been hacked, act quickly. Recover access, change passwords, check recovery details and secure any linked accounts.
If an account has been hacked, recover access through the official app or website, change the password, turn on two-step verification and check recovery email addresses, phone numbers, devices and recent activity. If the same password is used elsewhere, change it on those accounts too.
Start with the account that controls the most access. Email is often the priority because it can reset passwords elsewhere.
Secure email first if possible. It may be used to reset passwords for banking, shopping and social media accounts.
Start recoveryRecover access, check messages and warn contacts if scam posts or messages may have been sent.
Social account stepsCheck orders, addresses, saved cards and recent activity. Contact the provider if anything looks wrong.
Money risk stepsWork through these in order. If you cannot access the account, use the provider's official recovery route.
Go directly to the real website or app. Do not use links from suspicious messages. Follow the provider's recovery steps.
Use a new, unique password. If that password was used anywhere else, change it on those accounts too.
Use two-step verification or multi-factor authentication where available. This makes it harder for someone else to get back in.
Review recovery email addresses, phone numbers, trusted devices, connected apps and active sessions. Remove anything you do not recognise.
Look for messages, posts, orders, password changes, new addresses, payment changes or login alerts you do not recognise.
If scam messages may have been sent from your account, warn contacts not to click links, send money or reply to unusual messages.
Some hacked accounts can be used to buy goods, change payment details or access other services.
Review recent orders, saved payment methods, delivery addresses and refunds. Contact the provider if anything looks wrong.
If bank or card details may be exposed, contact your bank using your banking app, card number or official website.
Email access can help someone reset other accounts. Treat it as a priority if it may be compromised.
Look for messages sent to friends, family or followers. Warn them if suspicious links or requests may have been sent.
These guides may help if the account issue involved a suspicious link, payment or bank call.
Close the page, check what you entered and secure any account involved.
Read the link guidanceContact your bank or payment provider quickly and keep evidence of the transfer.
Read the money guidanceIf someone called claiming to be from your bank, pause and contact your bank through a trusted route.
Read the bank call guidanceRecover access through the official website or app, change the password and turn on two-step verification. Then check recovery details, devices and recent activity.
Yes, if you used the same or similar password elsewhere. Start with email, banking, shopping and social media accounts.
Warn your contacts not to click links, send money or reply to unusual messages. Keep screenshots if you need to report what happened.
Use the provider's official account recovery route. Avoid anyone offering paid recovery help through messages, comments or adverts.
The UK Scam Safety Toolkit gives you practical checklists and action sheets to keep at home, including steps for suspicious messages, bank calls, online shopping scams and family conversations.
The safest step is often a pause. Download the free Cleverways guide and keep a simple check nearby for suspicious messages, calls, emails and payment requests.
Last reviewed: May 2026. Cleverways provides practical educational guidance and signposts trusted UK routes.