Lock down the targeted account and any reused passwords

    Speed matters. Phishing kits forward your details to the attacker within seconds, so changing the password and revoking sessions is the priority over everything else.

    Order of operations

      1. Change the affected account's password (from a different device)
      2. Sign out all other sessions
      3. Re-enrol 2FA
      4. Repeat password change anywhere you reused it

    More from Communications Security

    No image

    Confirm the inbox is actively compromised

    Pin down which account, who's been emailed, and which sessions are unfamiliar.
    No image

    Make the next phishing email harmless

    Use a password manager, hardware key and email aliases so a single phish can't cascade.
    No image

    Use specialised victim resources

    Sextortion has dedicated services — they're free, confidential and fast.