Lock down anything you might have exposed

    Tech-support callers often get more than people realise — the call is a script designed to extract data subtly. A precautionary lockdown is the right default.

    Why act even if 'nothing happened'

    Many victims downplay how much they shared. A 10-minute precautionary password change costs little; assuming you're fine and being wrong costs a lot.

    More from Communications Security

    No image

    Confirm the inbox is actively compromised

    Pin down which account, who's been emailed, and which sessions are unfamiliar.
    No image

    Make the next phishing email harmless

    Use a password manager, hardware key and email aliases so a single phish can't cascade.
    No image

    Use specialised victim resources

    Sextortion has dedicated services — they're free, confidential and fast.