InMyArea.com earns commissions from some of the providers we list on our site. Learn more  

InMyArea.com Logo
888-894-5573

Don't Panic: 7 Things You Need to Do When Your Personal Data Has Been Breached

Written on:
A man sits in a dark room on the phone, and his computer says his email account has been hacked in this image from Shutterstock

You shouldn’t lose your cool if you’ve been hacked. (Image: Shutterstock)

The internet is one of the greatest and most useful inventions known to mankind. For all its benefits, however, there are some negatives. It’s far too easy for us to become addicted to our screens. Misinformation and falsehoods run rampant. Most devastatingly, they can lead to a personal data breach. 

Every time you create an account for a new website or use your credit card online, you increase the risk of exposing your personal information if that site gets hacked. If this misfortune strikes you, don’t panic. Just because your data was breached doesn’t mean you’ll be scammed out of thousands of dollars or have your identity stolen. Stay calm and take the following steps to protect yourself and prevent another breach from happening. 

Change Your Passwords

This is the first and most crucial step. If a website you frequently log in to has been breached, change your password on that site immediately. Any other accounts with the same or similar passwords should also have their passwords changed. As a general precaution, don’t reuse passwords on multiple sites. Yes, it can be tedious to keep track of them all. Download or use a password manager program so you don’t have to remember every unique password. Take advantage of it and any other features designed to protect your privacy. 

Find Out What Was Breached

A credit card hooked on top of a laptop’s keyboard in this image from Shutterstock
The countermeasures you take will depend on what information was breached. (Image: Shutterstock)

Hackers will target all kinds of personal information when they breach your data. What damage they’re capable of varies depending on what information they find. If they crack your email, you may see an influx of spam and fake login attempts for accounts that use your email address. Stealing your phone number can result in SIM-jacking (stealing and rerouting all incoming calls and texts). The most damaging of all is if they obtain your Social Security number. With that, they can cause scams, loan and tax fraud, and identity theft. 

Set Up Two-Factor Authentication

Two-factor authentication is an additional layer of security to help protect your data. Has a website ever asked you for the name of your first pet or second-grade teacher? Your answer is a form of two-factor authentication. If you forget your password, the site will pull up the security question for you to answer. A hacker might be able to figure out your password, but it’s harder for them to know what make and model your first car was. If you’re especially concerned, you can always lie. Hackers might find out your mother’s maiden name, but it will do them no good if you use a made-up name!

Another form of two-factor authentication is an external app. These are third-party apps that generate random codes every minute or so. If you attach one to your account, you need to input the current code to verify your identity. Ideally, you’re the only person with access to the authenticator app, so this prevents others from accessing your accounts and stealing your information. These apps are almost always free; Google Authenticator is one popular and reputable example.

Check Your Bank Accounts and Credit Cards

A man in a white shirt looks at both his phone and credit card, and his laptop is open on a table in this image from Shutterstock.
If your credit card info is stolen, you should freeze or close your account. (Image: Shutterstock)

If an e-commerce site has been breached, there’s a possibility your credit card information is in jeopardy. In this situation, check your bank balance and credit card statements. Report any fraudulent charges immediately. In the worst-case scenario, you may have to freeze or even cancel your card. This can be done either in person or, for some banks, through an app or the website. 

While two-factor authentication for credit cards doesn’t exist as of this writing (although you should attach your bank login information to one), there’s a way to boost your card’s security. Using a third-party payment app like PayPal can strengthen your security. Because it stores your card information, you don’t have to manually input it for every site. It’s also another site potential hackers need to breach. When there’s a breach, the site is typically swift in addressing it, as PayPal did in January 2023. Attach your PayPal account to two-factor authentication for even more security! 

Look Out for Updates

Typically, you’ll find out about a potential breach from the company or website itself. It may release a public statement or send mass emails to its users. Sometimes, that’s the extent of its communication. However, you should keep an eye out for any follow-up communication. If the company finds out who was affected, it’ll reach out to them. The company may also offer additional advice or services for those who had data stolen. Staying informed is one of the greatest tools you have!

Install a VPN

NordVPN branding magnified in this image from Shutterstock
A VPN can keep your data safe, even if there’s a breach. (Image: Shutterstock)

You know how when you connect to a new internet connection, your device will ask if it’s a private or public connection? Statistically, private networks are safer than public networks. That’s not to say you can’t get hacked over a private network or that you shouldn’t process personal information over a shared connection. It’s overall safer to perform private matters like banking or online shopping at home or over a connection you trust. 

With a virtual private network (VPN), you’ll have the safety of your home Wi-Fi network anywhere. Turning it on blocks online trackers and encrypts your data. There’s also the option of changing your computer’s location. You may be sitting in your home in Missouri but have your location set to Dublin, Ireland. Of course, almost all VPNs require a monthly fee. However, it may be worth the extra expense when it comes to your sensitive data. 

Visit IdentityTheft.gov

A personal data breach is the quickest way to incur a case of identity theft. If you’re concerned that your identity is stolen, visit IdentityTheft.gov. It’s an official government website run by the Federal Trade Commission. It will ask you to input the information relevant to your situation. From there, it’ll help you formulate a plan to reclaim your identity. The website will also help you fill out any essential forms or letters you may need. Even if you aren’t sure your data is in danger, the site will still help you build a personal plan and offer advice. The U.S. government takes identity theft extremely seriously — use this to your advantage. 

You may also want to file a report with your local police department. The report will help dispute any fraudulently obtained loans or credit cards when debt collectors come calling. If you’re concerned that the police won’t be unable to help because the hacker lives outside of your city or state, you can contact the police department in the city where the theft occurred. No matter what, you’ll want to have the police report on hand. If the police push back, stay persistent (but polite) in getting the report from them.