How to Recover a Hacked Email or Social Media Account

You try to log into your email and your password does not work. Or you notice messages you did not send. Or a friend calls and says, "Did you really send me that weird link?" Your account has been hacked.

This is scary, but it is recoverable. Millions of accounts get hacked every year, and the major email and social media companies have recovery processes specifically designed for this. Here is exactly what to do.

Gmail Account Recovery

Google has the most robust account recovery process of any major email provider. Here is how to get back in:

If you can still log in:

1. Go to myaccount.google.com
2. Click Security in the left sidebar
3. Under "Recent security activity," review any unfamiliar sign-ins
4. Click Password and change it immediately to something new and strong
5. Under "2-Step Verification," turn it on if it is not already enabled
6. Check Settings > Forwarding in Gmail. Hackers often set up forwarding to silently copy all your incoming email. Remove any forwarding addresses you do not recognize.
7. Check Settings > Filters. Hackers sometimes create filters that auto-delete or redirect certain emails. Delete any filters you did not create.

If you are locked out:

1. Go to accounts.google.com/signin/recovery
2. Enter your email address
3. Google will walk you through recovery options: sending a code to your recovery phone number, sending a code to your recovery email, or answering security questions
4. If none of those options work, Google will ask you to verify your identity by answering questions about your account (when you created it, what services you use, etc.)

Facebook Account Recovery

If you can still log in:

1. Go to Settings & Privacy > Settings > Security and Login
2. Under "Where You're Logged In," review all active sessions. Click "Log Out" next to any devices or locations you do not recognize.
3. Change your password immediately
4. Turn on two-factor authentication under "Two-Factor Authentication"
5. Check your email address and phone number under "Contact" to make sure the hacker did not add their own

If you are locked out:

1. Go to facebook.com/hacked
2. Click "My Account Is Compromised"
3. Enter your email address, phone number, or username
4. Facebook will guide you through identity verification to regain access
5. If the hacker changed your email, Facebook can send a recovery link to your original email address

Facebook recovery can take several days if the hacker changed your email and phone number. Be patient and follow each step carefully.

Other Common Accounts

Yahoo Mail: Go to login.yahoo.com and click "Forgot password." Yahoo will send a verification to your recovery phone or email. If locked out completely, use help.yahoo.com to contact support.

Instagram: On the login screen, tap "Get help logging in." Instagram can send a recovery code via text or email. If the hacker changed your contact info, tap "Need more help" and follow the identity verification process (you may be asked for a video selfie).

Microsoft/Outlook: Go to account.live.com/password/reset. Microsoft will send a security code to your recovery phone or email. If those were changed, you can fill out a recovery form to prove your identity.

After You Regain Access: Critical Security Steps

Getting back into your account is only half the battle. You need to lock it down so it does not happen again.

1. Change your password to something completely new. Do not reuse passwords from other accounts. A strong password is at least 12 characters and includes a mix of letters, numbers, and symbols.
2. Enable two-factor authentication (2FA) on every account that offers it. This means even if someone steals your password, they cannot log in without also having your phone. Use your phone number for text codes at minimum. An authenticator app (Google Authenticator or Authy) is even better.
3. Check for forwarding rules. In your email settings, look for any forwarding rules or filters you did not create. Hackers set these up to silently receive copies of your email even after you change your password.
4. Review connected apps. Check what third-party apps have access to your account. Remove any you do not recognize. In Gmail, check this at myaccount.google.com/permissions. On Facebook, check Settings > Apps and Websites.
5. Check for sent messages. Look at your sent folder. Did the hacker send messages to your contacts? If so, you need to warn people (next section).

Warn Your Contacts

If a hacker sent messages from your account, your contacts may have received phishing links, money requests, or other scam messages that appeared to come from you. Some of your contacts may have clicked those links or sent money believing it was you asking.

Send a message to your contacts letting them know your account was compromised. Keep it simple:

"My email/Facebook was hacked. If you received any unusual messages from me recently, do not click any links and do not send any money. Please delete those messages. I have secured my account and I am sorry for any inconvenience."

This is especially important for older contacts who might be more likely to trust a message from a familiar name.

How Accounts Get Hacked in the First Place

Understanding how it happened helps prevent it from happening again. The most common ways accounts get compromised:

• Phishing: You clicked a link in a fake email and entered your password on a page that looked like the real login but was not.
• Password reuse: You used the same password on multiple sites. One of those sites had a data breach, and hackers tried your password everywhere else.
• Weak passwords: Passwords based on birthdays, pet names, addresses, or common words are easy for automated tools to guess.
• No two-factor authentication: Without 2FA, a stolen password is all a hacker needs.

The solution to all of these: use unique, strong passwords for each account and enable two-factor authentication everywhere. A password manager makes this practical. Your phone has one built in (Apple Keychain or Google Password Manager).

If the hack resulted in financial loss, document everything and consider reaching out to a CPA who specializes in fraud cases. Visit ScamTaxHelp.com if you lost money and want to explore tax recovery options.