Skip to content
Back to Security Center

What to Do If Your Account Is Compromised

Signs Your Account May Be Compromised

Before taking action, it is important to recognise the warning signs that indicate your account may have been compromised:

  • You receive password reset emails or notifications that you did not request.
  • You notice login activity from unfamiliar locations or devices in your account history.
  • Friends or contacts report receiving strange messages from your account that you did not send.
  • Your profile information, such as your email address, display name, or profile picture, has been changed without your knowledge.
  • You discover posts, comments, or marketplace listings on your account that you did not create.
  • You are unexpectedly logged out and your password no longer works.

If any of these apply to you, act immediately. The faster you respond, the less damage an attacker can cause.

Step 1: Change Your Password Immediately

If you still have access to your account, change your password straight away. Choose a strong, unique password that you have not used on any other service. Use a passphrase or password manager to generate something robust. If you used the same password on other accounts, change those passwords as well, starting with your email account, as attackers often target email to intercept password reset links for other services.

Step 2: Enable Two-Factor Authentication

If you have not already enabled two-factor authentication (2FA), do so now. This adds a second verification step, such as a code from an authenticator app, that prevents attackers from accessing your account even if they have your password. If 2FA was already enabled and the attacker bypassed it, consider switching to a more secure method, such as a hardware security key.

Step 3: Review and Revoke Connected Apps

Many accounts allow third-party apps and services to connect. Attackers sometimes add malicious apps to maintain access even after you change your password. Go to your account settings and review all connected applications. Revoke access for any apps you do not recognise or no longer use. On KF.Social, you can find this under your Account Settings in the Connected Apps section.

Step 4: Check Recent Account Activity

Examine your account's activity log for any actions you did not take. Look for:

  • Messages sent to other users.
  • Changes to your profile or privacy settings.
  • New friend requests or connections you did not initiate.
  • Marketplace listings or purchases you did not make.
  • Changed payment or banking details.

Document anything suspicious. This information may be needed if you report the incident to authorities or to KF.Social support.

Step 5: Check Your Email Account

Your email account is often the gateway to all your other accounts, since password reset links are sent there. If your KF.Social account was compromised, check your email for signs of unauthorised access as well. Look for forwarding rules you did not create, read messages you did not open, and any unfamiliar sent messages.

Step 6: Contact KF.Social Support

If you cannot regain access to your account, or if you believe the attacker has changed your email address or other recovery options, contact KF.Social support immediately. Provide as much detail as possible about the unauthorised activity. Our team can assist with account recovery and can lock the account to prevent further misuse.

Step 7: Report the Incident

Report the compromise to the relevant authorities. In the UK, you can report cybercrime to Action Fraud, the national reporting centre for fraud and cybercrime. If you believe your personal data has been misused, you may also wish to contact the Information Commissioner's Office (ICO).

The National Cyber Security Centre (NCSC) also provides detailed guidance on recovering compromised accounts and securing them against future attacks.

Preventing Future Compromises

Once you have regained control, take steps to prevent a recurrence:

  • Use a unique, strong password for every account.
  • Keep two-factor authentication enabled at all times.
  • Be cautious of phishing messages that attempt to trick you into revealing your new credentials.
  • Regularly review your account activity and connected apps.
  • Keep your devices and software updated to close security vulnerabilities.

A compromised account is stressful, but swift action can limit the damage and restore your security. Do not delay: begin with Step 1 and work through each action methodically.

Creating Strong Passwords

Weak passwords remain one of the top reasons accounts get compromised. Discover how to build passwords that are both strong and memorable.

Read article

Two-Factor Authentication Explained

Two-factor authentication adds a critical second layer of protection to your accounts. Learn the different methods available and how to set them up.

Read article

Recognising Phishing Emails and Messages

Phishing attacks trick people into revealing passwords, financial details, and personal data. Knowing the warning signs is your strongest defence.

Read article
Back to Security Center