Stay Calm, Then Act Fast

Finding out your data was exposed in a breach can feel overwhelming. But panicking leads to mistakes. Instead, follow a systematic response — prioritize the actions that close the most dangerous doors first, then work through the rest methodically.

The type of data exposed matters enormously. A breach involving only your email address is far less urgent than one that exposed your Social Security Number, financial data, or passwords.

Step 1: Confirm What Was Actually Exposed

Don't rely on headlines alone — breach notifications are often vague. Check these sources:

  • HaveIBeenPwned.com: Enter your email address to see which known breaches include it and what data types were exposed.
  • The breach notification itself: Companies are legally required to inform affected individuals. Read the notification carefully for specifics.
  • Your account on the affected platform: Some services show you what data they hold; compare that to what was reported stolen.

Step 2: Change Exposed Passwords Immediately

If your password was part of the breach — or if you reuse passwords anywhere — act immediately:

  1. Change the password on the breached account first.
  2. Change the same password on every other account where you used it.
  3. Use your password manager to generate unique, strong replacements for each account.
  4. Prioritize your email account — it's the master key to everything else via password resets.

Step 3: Enable Multi-Factor Authentication

If you haven't already, enable MFA on every affected account and on your email. Even if an attacker has your password, MFA stops them from logging in without your second factor. Use an authenticator app (like Aegis, Authy, or Google Authenticator) rather than SMS where possible — SIM swapping attacks can intercept text-based codes.

Step 4: Freeze Your Credit (If Financial Data Was Exposed)

If your Social Security Number, bank account details, or other financial identifiers were part of the breach, place a credit freeze with all three major bureaus:

  • Equifax: equifax.com/personal/credit-report-services
  • Experian: experian.com/freeze/center.html
  • TransUnion: transunion.com/credit-freeze

A credit freeze prevents new credit lines from being opened in your name — even by you — until you temporarily lift it. It is free in the United States and is one of the most powerful tools against identity theft.

Step 5: Watch for Phishing and Social Engineering

After a breach, attackers know you're aware something happened. They'll often send follow-up phishing emails pretending to be the breached company, offering "security assistance" or directing you to a fake login page. Be extra vigilant:

  • Do not click links in breach notification emails — go directly to the company's website.
  • Be suspicious of unexpected calls from "your bank" or other institutions.
  • Treat any request for personal information with extreme skepticism in the weeks following a breach.

Step 6: Monitor Your Accounts and Identity

Set up ongoing monitoring so you catch any misuse early:

  • Enable transaction alerts on all bank and credit card accounts.
  • Review your credit report at AnnualCreditReport.com — each bureau offers free reports.
  • Consider an identity monitoring service, but evaluate carefully — some offer more than others.
  • Set a Google Alert for your name combined with terms like "fraud" or "arrest" to catch identity misuse.

Step 7: Report if Necessary

If you experience actual identity theft or financial fraud as a result:

  • USA: Report to the FTC at IdentityTheft.gov, which generates a personalized recovery plan.
  • File a police report if you're a victim of actual fraud — some institutions require it.
  • Contact your bank or card issuer immediately to dispute fraudulent charges.

Prevention Going Forward

Use this experience to build stronger habits: unique passwords for every account, MFA everywhere, and a credit freeze as a permanent precaution. Being proactive before the next breach is always easier than recovering after one.