Back to the list page

What if you are targeted

Take immediate and careful action

image of blog subscription (for a direct-to-consumer electronics brand)

If targeted in a phishing scam, immediate and careful action is crucial to minimize damage and protect personal information.

Immediate Steps

  • Do not provide any additional information or click more links in the suspicious message.
  • If credentials (username, password, banking info) were entered, change the compromised passwords immediately on all affected accounts.
  • If sensitive information (like Social Security Number, financial details) was exposed, contact the relevant organizations (banks, credit bureaus) to monitor for suspicious activity.
  • Enable multi-factor authentication for accounts where possible.

Reporting the Scam

  • Report the phishing attempt to the platform or service that was impersonated (such as banks, email providers).
  • In the United States, forward phishing emails to the Anti-Phishing Working Group at reportphishing@apwg.org and to the Federal Trade Commission (FTC) at reportfraud.ftc.gov.
  • For SMS/text scams, forward messages to SPAM (7726).

Monitor for Consequences

  • Keep a close eye on bank statements, credit reports, and account activity for any unauthorized transactions or changes.
  • Consider placing a fraud alert or credit freeze with major credit bureaus if personal information was leaked.

Additional Protection

  • Run reliable antivirus/antimalware scans to ensure no malware was installed.
  • Warn contacts if it is likely attackers might target them after the compromise.

Taking these steps can help reduce risks and control any damage after a phishing scam.

Back to the list page