What to do if my email is hacked?

If you still have access – change password, review sessions, recovery methods and forwarding rules, enable 2FA. If locked out – use the provider's official recovery process. After recovery, change passwords on all linked accounts.

Why is email hacking more dangerous than social media?

Because email is the core of the "forgot password" function for all accounts. Whoever controls the email can reset practically any linked account – social network, bank, cloud storage.

How do I know if my email was hacked?

Check: are there unsent emails in your Sent folder, did you receive unknown password reset notifications, are emails missing, did contacts receive strange emails "from you." You can also check if your email was in a data breach.

Is changing the email password enough?

Not always. You also need to check active sessions, recovery methods, forwarding rules, and third-party access. If you don't know how access was obtained (malware, phishing, breach), the cause may still be active.

What to do after recovering email?

Change passwords on all accounts linked to that email. Enable 2FA everywhere. Check each important account's active sessions. If the email is linked to business – review all financial and business resources.

Email Hacked – Why It's Dangerous and What to Do

Why Email Compromise Is More Serious Than Any Other Account

Think about how many accounts use that same email: social networks, banks, cloud storage, work tools. Each has a "forgot password" function that sends a reset link to your email.

What happens when an attacker controls your email:

Can reset any linked account's password
Can see and delete recovery emails
Can change recovery phone numbers and alternative emails
Can set up forwarding rules to receive copies of all your mail
You won't even know any of this is happening

That's why when people try to recover a hacked Instagram or Facebook account while their email is still compromised – recovery either fails or the attacker quickly takes everything over again.

How Email Usually Gets Hacked

Password leaked via another platform
If you used the same password elsewhere and that platform was breached – attackers try your email first because they know its value.

Phishing
Fake "Google Security Alert," "Microsoft Account Verification" or similar emails with links to fake login pages.

Malware and keyloggers
If malicious software was installed on the device, it can capture keyboard input or session cookies.

SIM swap or phone takeover
If email recovery is tied to a phone number and that number is taken over, the attacker gets full access.

What to Do If You Still Have Email Access

If you can still log in – this is the best scenario, but you need to act quickly and methodically:

Change password to a new, unique one not used anywhere else.
Review active sessions and log out all unfamiliar devices.
Check recovery methods – is your phone number listed? Is there a foreign alternative email added?
Review forwarding rules (Gmail: Settings → Forwarding and POP/IMAP). Attackers often set up silent forwarding to receive copies of all your emails.
Review app access and remove anything you don't recognize.
Enable 2FA – SMS codes are the simplest and most practical method.

What to Do If You've Lost Email Access

If the password was changed and standard recovery doesn't work:

Google (Gmail): Go through accounts.google.com/signin/recovery
Microsoft (Outlook, Hotmail): account.live.com/password/reset
Yahoo: login.yahoo.com/forgot

Each provider has its own recovery process. Key principles:

Use the same device and browser you normally used to log in
Don't attempt multiple recoveries through different channels simultaneously
If identity verification is requested – submit documents patiently

After Email Recovery: What to Do With Other Accounts

Once you've recovered email access, the work isn't done. Every account linked to that email is potentially compromised:

Make a list of all important accounts (social networks, banks, cloud storage, work tools)
Change passwords on each one – use unique passwords
Check each account's active sessions and logins
Enable 2FA everywhere possible

If this feels overwhelming – professional account security setup covers this entire chain at once.

Signs Your Email Was Hacked Earlier Than You Noticed

Many people learn about email compromise only when they lose another account. But signs are often visible earlier:

Sent folder contains emails you didn't send
You received password reset emails from platforms you didn't request
Expected emails are missing from your inbox
You received login notification from an unknown location
Contacts reported receiving strange emails "from you"

If you see these signs – act immediately, even if the password still works.

Biggest Mistakes

Changing only social media passwords without fixing email
This addresses the symptom, not the cause. The attacker quickly takes everything over again via email.

Ignoring forwarding rules
Even after changing the password, if silent forwarding remains – the attacker still receives copies of all emails.

Not enabling 2FA at all
Any 2FA protection – even simple SMS codes – is far better than none.

Thinking "I'll just change the password and that's it"
If you don't know how the email was compromised, changing the password may not be enough – the root cause (malware, phishing, breach) may still be active.

When to Stop Improvising

If the situation is:

Email hacked and other accounts already lost (Instagram, Facebook, etc.)
Unclear how access was obtained
Suspected compromised device
Email linked to business or financial services

In this case, trying everything yourself is usually slow and ineffective. Professional help fixes the entire chain at once: email, social accounts, device, and recovery channels.

Email Hacked: Why It's So Dangerous and What to Do