Your Email Was Hacked, Here's How To Fix It

Email hacking is a cyberattack where a hacker gains access to your email account. When that happens, hackers can monitor your communications and use any of your information for malicious purposes. They can even steal your personal data and use it to access your bank accounts.

With internet hackers getting craftier and data breaches becoming what feels like a weekly occurrence, it takes more than a unique password to deter bad actors. To keep your private information safe, you need to improve your cybersecurity. 

We’ll show you the best ways to protect your data and recover quickly if your email is breached, including using the best antivirus software and knowing how to spot a phishing email.

Signs your email account has been hacked

There are some not-so-subtle warning signs of a hacked email. Your friends or family members may even reach out asking if everything is okay because of strange messages that appear to have been sent by you. Let’s take a look at some of the main ways to tell if your email was hacked.

Your password doesn’t work

Do you use the same password across multiple online accounts? If you do, you're not alone. But the bad news is that hackers count on people reusing the same password. If your email address and password have been leaked in even a single data breach, then hackers can execute various cyberattacks like brute-force and access other accounts with the same login credentials. 

Once hackers access your email account, they can change your information so that you can’t reset your password and regain access to your account.

There are odd emails in your account

Not all hackers will change your password. Some of them send phishing emails to your address. These emails can be links for password resets to trick you into downloading malware or releasing your private data. Also, you may look at the items you sent and immediately realize you’ve been hacked because you’ll see messages you don’t recall sending. 

Contacts report receiving strange emails from you

You’ll quickly know if your email has been hacked when people report odd emails received from your account. For instance, the scammers might impersonate you and request money or access to private information.

Different IP addresses are in your details log

You may not know this, but when you log in to your account, some email providers log your IP address and location. This helps Google spot any suspicious activity, such as if you log in using a different mobile device.

To check Gmail's email log, open your email account dashboard and look for the Details link in the bottom-right corner.

This shows you the locations accessed from your account, including the state and country. This information is based on the IP address logged when you or another user signed into your account. The log also shows the date and time your account was accessed and the device type.

You can view this log to see when you’ve used your email and if any unfamiliar locations or device types appear. You can also find your device IP addresses to see whether all those listed in the email log match.

What to do if your email is hacked

Now that you know how to spot the problems, we’ll show you what to do if you’ve been hacked. There are immediate steps to take to mitigate the damage from hackers. If you follow these tips, you’ll recover much faster from an email breach.

1. Run antivirus software

The first step is to use a reliable antivirus program and run the Full Scan option. If you’ve been hacked, don’t cut corners with only a Quick Scan. A comprehensive scan can reveal all forms of malware, such as Trojans or ransomware, keyloggers, and other viruses. TotalAV and Bitdefender are two top-rated antivirus programs with real-time malware protection and advanced security features.

• TotalAV is our top choice for an easy-to-use antivirus program. Its WebShield feature offers real-time phishing protection, so you can easily avoid unsafe websites and protect yourself against scams. Plus, the award-winning antivirus software bundles a secure VPN and top-rated ad blocker to keep you safe online. 
  
  
  No Fuss, Real-Time Online and Mobile Protection

  

  4.7

  AllAboutCookies writers and editors score products based on a number of objective features as well as our expert editorial assessment. Our partners do not influence how we rate products.

  Editorial Rating

  Learn More

  On TotalAV's website

  Antivirus Software

  TotalAV

  First year discount on paid plans

  • Real-time protection from viruses, malware, and online threats
  • Blocks tracking cookies and ads, proactively monitors for data breaches, and option to schedule smart scans
  • 100% compatible with Windows, Mac, Android, and iOS operating systems on up to 3 devices
  • Lacks firewall protection
  
  Read Our TotalAV Review
• Bitdefender offers some of the best real-time defenses against phishing attacks targeting your email account. Its Advanced Threat Defense feature monitors apps and computer processes to spot malware and ransomware immediately. Bitdefender also bundles with a highly-rated VPN and parental controls to safeguard your entire family online. 
  
  
  

  4.8

  AllAboutCookies writers and editors score products based on a number of objective features as well as our expert editorial assessment. Our partners do not influence how we rate products.

  Editorial Rating

  Learn More

  On Bitdefender's website

  Antivirus Software

  Bitdefender

  • Super reliable antivirus software with a non-intrusive free version
  • Simple yet powerful interface tools
  • Perfect protection score in third-party tests
  • Slow scans compared to other options
  
  Read Our Bitdefender Review

2. Log out of all devices

If you’ve been hacked, log out of all your accounts on every device. This will prevent further damage until you can reset your passwords. You can usually do this once for all devices under your email security tab by selecting Manage all devices.

3. Change all passwords

You don’t want to keep your old passwords because you won’t know which one may have been breached. Steer clear of passwords that are obvious or easily guessed. And don’t use words like your dog’s name; anything personal is much simpler to penetrate. Opt to use a random password generator or a password manager to create, store, and manage your complex passwords across accounts and devices. 

Remember to also update your privacy settings and password for other compromised accounts, such as your Facebook or bank account.

4. Set up 2FA or MFA

Two-factor authentication (2FA) provides an extra layer of protection by requiring verification beyond simple login credentials, like a generic username and password combination. Most email providers allow you to enable 2FA in your email settings, but you can also get an authenticator app for extra security. If the email provider offers multi-factor authentication (MFA), use that additional security layer to protect your account. 

5. Change your account recovery options

Gmail, Microsoft Outlook, and other popular email services allow you to set an email or phone number to use if you need to recover your account. If the hacker also stole this information, changing your account recovery options to a new number or email is best.

How to report a hacked email account

If your email has been hacked, you want to cover all your bases and report the incident. In addition to the steps above, here are additional security steps to take.

• Check your other online accounts. If your email has been hacked, there’s a strong possibility that your other accounts have been breached, too. You don’t want to wait and find out someone is using your debit or credit card. Your banking institution will make it right, but if you can avoid the hassle, you should. 
• Alert your contacts. Be sure your contacts know what has transpired so they can ignore any messages until you have things under control. An unsuspecting family member might take the bait and send money, thinking you’re in need.
• Contact law enforcement. You can and should report internet-related crimes to the appropriate law enforcement authorities. Contact your local federal investigative agency for the specific internet crime contact.
• File a report. Use the Federal Trade Commission’s (FTC's) fraud alert link to report the crime. You can also use the IdentityTheft.gov link.

Email security tips

If you’ve ever been hacked, then you know how frustrating it is to undo the damage. Fortunately, here are some helpful tips to prevent email hacking so that it (hopefully) never happens again.

1. Use strong passwords. That means using something more complex than a nickname from high school that everyone may know. Secure passwords use a combination of upper- and lowercase letters, numbers, and symbols.
2. Set up security questions. Don’t skip those security questions. There are things only you know that help protect your account. Most new accounts will ask for these, so use this safety protocol.
3. Avoid phishing emails. If you get an email that looks like it’s from a friend or company you know but is asking you to click a link or download an attachment, it could be an email scam. Don’t fall victim to those emails that ask you to verify your private data or request you to make a payment by clicking a link.
4. Use antivirus software. Antivirus software scans for malware and can remove viruses and other malicious programs before they can corrupt your device and cause damage.
5. Use a VPN. A VPN helps keep your internet traffic private and your online activities secure while traveling or on public Wi-Fi. It gives you a secure connection to the internet. Comprehensive antivirus software bundles with a secure VPN for ultimate online protection. 

Top antivirus protection bundled with a VPN

FAQs

Bottom line

Email security may not be something you’ve considered in the past, but getting hacked can lead to many other problems, like having your banking information stolen and having your friends duped by a phishing email.

The online ecosystem can be tricky to navigate, but with our tips and the right antivirus protection, you’ll have the best methods to keep your data secure.