What to do if your email is hacked

Quick answer: A ‘you’ve been hacked’ email may be a scam to get you to share information. Signs your email has been hacked include being locked out, logins from unfamiliar devices, or emails you didn’t send. Take steps to keep your account secure.

Email accounts often contain a lot of sensitive information. If someone’s hacked your email, they may use this information to steal your identity and target your contacts. But it’s important to pause if you get a ‘you’ve been hacked’ email — this can actually be a phishing message designed to scare you into giving away information.

This guide explains how to tell if your account’s really been hacked, ways to secure it, and steps to protect yourself in the future.

Is my email hacked?

Is your email actually hacked? Or have you received a fake ‘you’ve been hacked’ email? Here are some signs your email really has been hacked:

  • You’re locked out. Hackers may change your password so you can’t log in.
  • Your account settings have changed. A hacker may change the settings, so you don’t get notifications of their activity.
  • There are unfamiliar logins. You see logins or login attempts from devices or places you don’t recognise.
  • You’re getting password reset emails. If you didn’t ask to change your password, these emails could be a hacker trying to gain access to your accounts.
  • There are odd or missing emails. Hackers may use your email account to send scams or commit fraud. Look for emails you don’t recognise, including in your inbox, sent and deleted item folders.

If your email is hacked, someone may be trying to steal your identity. Identity theft can have a serious impact on your finances and credit report, so it’s important to spot it early and act quickly.

I’ve got a ‘you’ve been hacked’ email

Companies may send security alerts if they see suspicious activity on your account. But a ‘you’ve been hacked’ email may also be sent by scammers to try and trick you into giving away personal information.

Look for signs of phishing and don’t respond, click links or open attachments unless you’re sure the message is genuine. If you’re not sure, try contacting your account provider using contact details you trust, not those in the email.

Does a data breach mean my email’s hacked?

Not necessarily, but it’s very important to protect yourself in a data breach. If your data has been leaked, it may be sold on the dark web and used by criminals to access your accounts.

Change your passwords, enable two-factor authentication and look for the warning signs of fraud.

How do I know if hackers have my data?

It’s important to know if your information’s been leaked so you can take steps to protect yourself. The NCSC’s guidance on data breaches suggests checking if your data has been leaked using Have I Been Pwned , antivirus services or password manager tools.

You can also get automatic web monitoring and fraud alerts if you upgrade your Experian account with Identity Plus. It lets you check whether your personal and financial details are exposed online. You also get enhanced fraud support and the ability to lock your Experian Credit Report, which limits criminals’ ability to take out credit in your name. Try Identity Plus free for 30 days — you’ll even get complimentary CreditExpert features like personalised tips for improving your score.*

New customers only. Identity Plus is £10.99 a month after your 30-day trial ends.

My email has been hacked — how do I fix it?

If your email’s been hacked, these steps can help you secure your account and protect it from being hacked again.

1. Recover the account

If the hacker has changed your password, follow the recovery process to get access to your account. This often means choosing the ‘Forgot password’ option, then confirming your identity using your backup email address, phone number or a push notification to your device.

Most email providers have guidance on their website, like how to recover a Gmail account . If you didn’t set up recovery details before your email was hacked, contact your provider for support.

If you can’t recover your account

If recovery isn’t possible, you may want to create a new email account to keep using the service. Report the hack to your email provider and take steps to protect yourself from fraud.

Update your email address on your other accounts, like those for banking, utilities and shopping. Tell your contacts you’ve stopped using the old account and share your new details.

2. Check your auto-forward settings

Once a hacker has access to your email account, they sometimes set up a forwarding rule so that they get a copy of all your emails, including password resets. Once you’ve recovered your account, go to your account settings to disable any auto-forwarding that has been set up.

3. Change your password

Create a new password for your email account. If you used the old password for other accounts, change those too. Each account should have a different password.

Avoid using personal details that hackers may have, like your birthday or middle name. The National Cyber Security Centre (NCSC) suggests using three random words — like ‘mangolondoncustard’ — to create a unique password that’s memorable but strong enough for most purposes.

4. Turn on two-factor authentication (2FA)

Two-factor authentication (2FA) can stop others from accessing your email account even if they know your password. It asks you to prove your identity with a second bit of evidence each time you log in — such as entering a temporary code texted to your mobile phone.

If you already had 2FA, make sure the hacker hasn’t changed it to a device they control.

5. Update your recovery email and phone number

Check your account recovery details are correct. Hackers may change your backup email address or phone number to their own, helping them to take over your account again if you recover it.

6. Sign out unknown devices

Some email providers show which devices are currently logged into your account. If you don’t recognise a device or location, you can force the device to log out.

It’s important to stop the hacker from logging in again, which is why it can help to first turn off auto-forwarding, change your password, set up 2FA and update your recovery details.

7. Review the hacker’s activity

Hackers may use your email account to pretend to be you — for example, to send phishing emails to your contacts or get access to your other accounts.

Check all your folders for emails you don’t recognise, including your sent and deleted items. Look for password resets for other accounts and take steps to secure those too.

8. Scan your devices for malware

Email hacking can happen in many ways, but one possibility is that you have malicious software, or malware, on your device. Malware often tricks you into downloading it by mistake — for example, it could look like a free app or an email attachment.

Use an antivirus product to scan your devices regularly. Apply updates to your devices, apps and software as soon as they’re available, as these often have built-in virus protection.

9. Tell your contacts

If someone has been sending emails from your account, warn your contacts as soon as you can. Let them know not to click links, open attachments or reply to suspicious messages that appear to come from you.

10. Protect yourself from fraud

Hackers can steal sensitive information from an email account, making it easier for your identity to be stolen. Check your financial accounts and credit report for any warning signs, like money transfers or credit applications you don’t recognise.

Consider blocking credit applications in your name by locking your report with Experian CreditLock. If you’re a victim of identity fraud, work with your bank, lenders, the police and credit reference agencies like Experian to help you recover.

11. Report the email hack

You can report fraud to the police online or by phone. Also, tell your email provider what happened — they should have a process for storing evidence on their end, which may be useful if you need it in a legal case later.

If you need support after cyber crime

John Webb

Credit Score Expert

Our expert says

Your email is often the key to your other accounts. If someone gets into it, checking your credit report and financial activity can help you spot problems early and protect your identity. John Webb, Experian UK

A hacker is sending emails from my account – what do I do?

If you’re locked out, try to recover your account with ‘forgot password’ or contact your email provider for support. Consider using a different account to warn your contacts you’ve been hacked.

If you have access to your account, learn how to secure your email account from hackers below.

Secure your email account from hackers

Try to kick hackers out of your account for good with these steps:

  • Disable any forwarding rules set up by the hacker.
  • Change your password to something new, strong and unique.
  • Enable two-factor authentication (2FA).
  • Sign out any devices you don’t recognise.
  • Update your account recovery contact details.
  • Check all folders to see what the hacker may have sent, seen or deleted — take steps to protect your financial accounts and credit report in case your identity has been stolen.

Protect your email account in the long run

Here are some ways to stay safer online in the future:

  • Keep recovery details and 2FA settings up to date.
  • Review your account activity often, like logins and app permissions.
  • Scan your devices for viruses and apply updates immediately.
  • Learn how to spot the different types of fraud, like phishing, social media scams and social engineering.
  • Get fraud alerts, web monitoring, enhanced fraud support, credit locking and your daily credit report with Identity Plus. Try it free for 30 days.*

New customers only. Identity Plus is £10.99 a month after your 30-day trial ends.

Frequently asked questions

Can someone hack my email with just my email address?

It’s unlikely, unless they guess your password. But scammers may send you phishing emails to try and trick you into giving away sensitive information, which may help them hack your account.

They could also ‘spoof’ your email address, meaning they create one that’s very similar and email your contacts pretending to be you. It’s also possible to look up personal information associated with an email address, like your full name and address.

Can someone hack my bank account with my email address?

No one should be able to hack your bank account with only your email address. But they could send phishing emails to try and trick you into giving them more information, which may help them hack your account.

This might look like an email from your bank asking you to log in, when it’s actually a scammer trying to steal your login details.

How do people hack my email?

Hackers may use stolen information to access your email, like a password they got through phishing or a data breach. Some use malware that you may have downloaded without realising, for example by visiting an insecure website.

Why does my email keep getting hacked?

If your email has been hacked more than once, one of these issues may be the cause:

  • You’re using a compromised password. Create a new, strong password that no one can guess and you don’t use for other accounts. Turn on two-factor authentication (2FA) so your password isn’t the only thing hackers need to log in. Sign out any devices you don’t recognise.
  • Hackers have changed your account settings. Hackers may change your account recovery information or create forwarding rules so that they get a copy of your emails, including password resets. Update your settings before changing your password again.
  • There’s malware on your device. Malware can allow hackers to see your new passwords and other information, allowing them to re-hack your account. Check all your devices with an antivirus scanner and apply any genuine software updates straight away.
  • You’re falling victim to phishing. Phishing is when scammers email you pretending to be a company or person you trust. They’re designed to trick you into giving away information that may be used to hack your accounts. Learn how to spot the signs of phishing and don’t interact with these messages.
  • You’re not actually being hacked. ‘You’ve been hacked’ emails are sometimes phishing emails. If you’re not sure, speak to your email provider using contact details you trust. If your contacts say they’re getting spam from you, check if it’s really from your email address or just a ‘spoof’ email that looks a lot like yours.

Similar articles

These articles might be of interest to you

What to do if you’re a victim of identity fraud

Find out what steps to take if you think your identity has been stolen.

Learn more

Identity Plus

Get web monitoring, fraud alerts and enhanced fraud support with Experian Identity Plus.

Learn more

Warning signs of identity fraud

Learn how to spot signs that your personal details may have been used fraudulently.

Learn more

What is phishing?

Learn how phishing scams work and how to protect yourself from suspicious messages.

Learn more
See all guides

*For Identity Plus a monthly fee of £10.99 applies after your free trial. You may cancel during your 30-day free trial without charge. New customers only. Free trial period starts on registration - further ID verification may be required to access full service which may take up to 5 days.

All free and paid for Experian consumer services are provided by Experian Ltd (registered number 653331.) Experian Ltd is authorised and regulated by the Financial Conduct Authority (firm reference number 738097). Experian Ltd is registered in England and Wales with registered office at The Sir John Peace Building, Experian Way, NG2 Business Park, Nottingham, NG80 1ZZ. The web monitoring feature and its alerts within Identity Plus is not Financial Conduct Authority regulated activity.

Copyright © 2026, Experian Ltd. All rights reserved.

Top