How to know if your data was breached and what to do next
It's frustrating and scary to discover that your personal information has been breached. Again. And again.
But there's good news. You can find out if your information was compromised and take steps to protect yourself from the consequences. Additionally, there are simple ways to reduce the risk of your private data ending up on the dark web. In this article, we'll cover how to determine if your data was part of a breach and what steps you can take to minimize potential damage. We'll also share strategies to protect yourself from future breaches.
How to know if your info was involved in a data breach
First things first: how can you find out if your email, name, phone number, or other private information became part of a data breach? Here are a few ways:
Notification from the company: Companies are often required to notify affected individuals if a data breach occurs. So, you might receive an email or a physical letter notifying you about a breach. The reality is, that sometimes these notifications don’t come, or they get lost in the shuffle. So, it’s important to have other ways to monitor.
Have I Been Pwned: This is a straightforward tool to check if your email was involved in data breaches. It also allows you to set up notifications for your email address, so you can receive an alert if your account is compromised.
Yorba: Yorba keeps an eye on all your accounts and tells you if, when, and how any of them may have been compromised. If one of your accounts is involved in a breach, the platform will let you know what to do next – and how to avoid future breaches.
What to do if your personal data was involved in a data breach
So, you’ve discovered that your personal information was involved in a data breach. It can be stressful and overwhelming, but taking the right steps quickly can help mitigate the damage and protect your identity. Here’s what you need to do to safeguard your information and prevent further issues.
Change your passwords: Create strong, unique passwords for all affected accounts, using a combination of letters, numbers, and symbols. If you used the same password for other platforms, change it there too.
Consider deleting your account: Companies can get breached multiple times (e.g., Facebook, Twitter, Uber, and LinkedIn have been). If you don’t use your account, consider deleting it. Yorba offers comprehensive instructions on account deletion, even for websites that make it difficult to do so.
Monitor your accounts and credit reports closely: Watch for any suspicious activity or unauthorized transactions. Sign up for free credit reports and review them regularly to catch any signs of identity theft early.
Consider freezing your credit: If financial information was exposed (you can check what was exposed in the company’s report or your Yorba account), consider freezing your credit. This prevents new accounts from being opened in your name. You can also contact your bank or credit card company to report the issue and request new cards if necessary.
Report identity theft: If your identity was stolen, contact the Federal Trade Commission (for US residents only) by completing the online form or calling 1-877-438-4338. Include as many details as possible.
By the way, under the GDPR, if a company breaks data protection laws, causing you harm, you have the right to claim compensation from them. This could be both for material damage, like a financial loss, and non-material damage, like distress.
How to protect your personal data from a data breach
There are a few simple steps, to protect your personal information, without turning your life upside down.
Use unique passwords: We've all been tempted to use 'Fluffy1234' across all our accounts for convenience. But reusing passwords can spell trouble. Even minor data breaches can cause big headaches if you reuse passwords (and let’s face it, 65% of us do). A leak from an old login could expose credentials for newer, more important accounts. Always create strong, unique passwords for each of your accounts to keep your information safe.
Enable two-factor authentication (2FA) wherever possible: This adds an extra layer of security to your accounts, making it harder for hackers to gain access even if they have your password.
Be wary of phishing attempts: Phishing scams trick you into giving away personal information, often through emails or messages that look surprisingly legitimate. They might ask you to 'confirm' your account details or click on a link to reset your password.
Remember: no reputable company will ask for your password via email. Always check the sender’s email address for any oddities, and when in doubt, go directly to the website instead of clicking on links in emails.
Delete all accounts you don’t use: Cybercriminals need details like your name, DOB, and SSN to steal your identity. If this data is floating around on platforms that were breached, they can collect it from the dark web and put together the puzzle pieces. Data brokers are also out there gathering many of the same details these criminals want. The more old accounts containing your private information linger online, the easier it is for criminals to get a complete picture of you.
Sure, active accounts can be breached too, but old ones are particularly vulnerable because they’re often left with outdated security and no monitoring. So, take a moment to declutter your digital footprint and delete any accounts you no longer use. Not sure what accounts you have out there? Yorba can find all of them.
Dealing with data breaches can feel like déjà vu—another day, another notification that your personal info has been compromised. But instead of throwing your hands up in frustration, let’s take action.
Think of Yorba as your digital bodyguard, always on the lookout for any funny business with your accounts. Regularly changing your passwords and enabling two-factor authentication are like swapping the locks on your door after a break-in—essential for peace of mind.
Deleting old, unused accounts is like cleaning out a closet full of junk—liberating and smart. Those forgotten profiles are prime targets for breaches. And always be skeptical of unexpected emails asking for personal info; phishing scams are craftier than ever.
Taking these steps might not turn you into a cyber warrior overnight, but they will make you a much harder target for hackers.