Passlock

October 22, 2025

I've Been in a Data Breach! What Do I Do Now?

Don't Panic. Act with Purpose.

A data breach notification is alarming, but a methodical response can neutralize the threat. Follow these steps immediately.

Step 1: Change the Password on the Breached Site

Your first move. Log in to the affected service and change your password to a new, strong, and unique one. Use a password generator.

Step 2: Identify and Change All Reused Passwords

This is the most critical step. If you reused that password anywhere else, assume those accounts are also compromised. Change the password on every single one of them. A good password manager can run a report to help you find reused passwords.

Step 3: Enable the Strongest 2FA Available

If you haven't already, immediately enable two-factor authentication (2FA) on all affected accounts, especially critical ones like email. Choose Passkeys or an Authenticator App over SMS if possible.

Step 4: Check for Suspicious Activity

Review account settings, recent logins, and purchase history. On financial accounts, scrutinize recent transactions. Report anything suspicious to the service provider.

Step 5: Be on High Alert for Phishing

Hackers will follow up a breach with targeted phishing emails, often pretending to be the breached company asking you to 'verify your account.' Treat all related emails with extreme suspicion and never click links.

Step 6: Consider a Credit Freeze

If highly sensitive data like your Social Security Number (or equivalent national ID) was exposed, place a free credit freeze with the major credit bureaus. This prevents criminals from opening new lines of credit in your name.

Take the Next Step in Your Security

NordPass
Password Manager

A secure and easy-to-use password manager for all your devices, from the makers of NordVPN.

Learn More
NordVPN
VPN

Enjoy fast, private, and secure internet. Protect your data from prying eyes with one click.

Learn More