PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Has Your Data Been Breached? Take These 3 Steps Now

We explain how data breaches happen and what to do if you've been affected.

Kim Key
 & Kim Key Senior Writer, Security

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

A data breach occurs whenever sensitive information is released online. Sometimes human error causes a breach, such as a company failing to encrypt a customer information database. However, there's a lot of money to be made with your information in the darker corners of the web, so there are plenty of people out there trying to scoop up your data, too. Hackers usually attack via the following methods:

  • Phishing: A social scam meant to fool you into clicking a link to a malicious site or downloading malware. 
  • Brute force attack: A method where malicious software or bad actors try to guess your password. 
  • Malware: Software that infects your devices to gather sensitive information. 

How Can You Protect Yourself From a Data Breach?

The best way to keep your information safe is to use strong and unique passwords across all your accounts, store the passwords in a password manager, and use multi-factor authentication on all your password-protected accounts. Using antivirus software may help keep malware from infecting your devices, but you also should practice safe online behavior, such as not clicking on chat or SMS links from unknown senders and not downloading email attachments from untrusted sources.

What Should You Do if a Breach Happens? 

The bad news is that data breaches keep happening, so you need to be prepared with a quick way to respond. Try the following three steps:

1. Change any leaked passwords

Hackers often upload the information they've stolen online. Anyone can find your passwords and use them to log into your accounts, even months after the initial breach. 

Recommended by Our Editors

Google Will Soon Spot Fake Calls on Supported Android Phones
Google Will Soon Spot Fake Calls on Supported Android Phones
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts

2. Remove your data from websites you don't use

Haven't used MyFitnessPal in several years? Me either. The company experienced a breach in 2018, and there's no reason why that can't happen again. Delete any lingering personal information on websites you no longer use to ensure it doesn't fall into the wrong hands. 

3. Read the company's response

Did you see a site you frequent on a breach list? Keep an eye on its website or blog for the company's response. Organizations should tell customers when a breach happened and why it occurred. If the company fails to explain those points, you may want to stop doing business with them because they may not have your online safety in mind. 

More Security Tips

For more advice on how to stay safe and protect your privacy, you could read 7 Signs You Have Malware and How to Get Rid of It, 12 Simple Things You Can Do to Be More Secure Online, and 4 Easy Ways to Make Your Smart Home More Secure.

About Our Expert

Kim Key

Kim Key

Senior Writer, Security

My Experience

I review privacy tools like hardware security keys, password managers, private messaging apps, and ad-blocking software. I also report on online scams and offer advice to families and individuals about staying safe on the internet. Before joining PCMag, I wrote about tech and video games for CNN, Fanbyte, Mashable, The New York Times, and TechRadar. I also worked at CNN International, where I did field producing and reporting on sports that are popular with worldwide audiences.

In addition to the categories below, I exclusively cover ad blockers, authenticator apps, hardware security keys, and private messaging apps.

The Technology I Use

I like testing new software for work, but I'm less "plugged in" to the internet than I used to be. I tend to read app privacy policies to see what kind of data companies collect, and as a result of those findings, I don't use many mobile apps. In a similar vein, I was an early adopter of many social media platforms, but now I’m just an infrequent Reddit lurker.

I'm a gear junkie. I split my work time between a 2021 Apple MacBook Pro and a Lenovo ThinkPad. I shoot most of my videos for PCMag using a Canon M50, a Sony A7iii, and a Sony a6000. I edit videos using Final Cut Pro and Adobe Premiere Pro.

I write all of my words for PCMag either in the MS Notepad app on my ThinkPad or the Notes app on my iPhone 12 mini. If I'm traveling and working, I use my iPad to write short articles or take notes.

My dad built me my first computer sometime in the late '90s, and I used it for reading Encyclopedia Britannica and writing Sailor Moon fan fiction. My first phone was the ubiquitous Nokia candy bar.

Read the latest from Kim Key

Read full bio