After You Clicked Something Bad

Do Not Panic, But Act Quickly

If you clicked a bad link, downloaded something suspicious, or entered information on a fake site, quick action can limit the damage. This guide walks you through what to do based on what happened.

If You Clicked a Link But Did Not Enter Information

You may be fine, but take precautions:

1. Close the tab or browser immediately
2. Clear your browser cache and cookies
3. Run a security scan on your device
4. Monitor for unusual behavior on your device

Simply visiting a malicious page can sometimes trigger drive-by downloads, so a security scan is a good idea even if you did not click anything on the page.

If You Entered Your Password

1. Change the password for that account immediately (from a different device if possible)
2. If you use the same password elsewhere, change it on those accounts too
3. Enable two-factor authentication if not already active
4. Check the account for unauthorized activity (sent emails, changed settings, purchases)
5. Review connected apps and revoke any you do not recognize
6. Log out all other sessions if the account offers that option

If You Entered Payment Information

1. Contact your bank or credit card company immediately
2. Report the card as compromised and request a new one
3. Review recent transactions for unauthorized charges
4. Set up transaction alerts if not already enabled
5. Consider a credit freeze if extensive personal info was exposed

If You Downloaded and Ran a File

1. Disconnect from the internet immediately (unplug Ethernet or turn off Wi-Fi)
2. Do not restart your computer yet
3. Run a full scan with your security software
4. If malware is found, follow your security software's removal instructions
5. Change passwords from a different, clean device
6. Consider having a professional inspect your computer if the infection was serious

If You Gave Remote Access to a Scammer

1. Disconnect from the internet immediately
2. Uninstall any remote access software they had you install
3. Run a full security scan
4. Change all passwords from a different device
5. Contact your bank if you logged into financial accounts during the session
6. Monitor your credit report for signs of identity theft
7. Consider a full system reinstall for complete peace of mind

Report the Incident

• Report phishing emails to the impersonated company
• Forward phishing emails to [email protected]
• Report scams to the FTC at reportfraud.ftc.gov
• Report the malicious site to Google Safe Browsing

Prevent Future Incidents

• Use a password manager to avoid entering credentials on fake sites
• Enable two-factor authentication on all important accounts
• Keep your browser and operating system updated
• Use security software with real-time protection
• Learn to recognize phishing attempts

Key Takeaways

• Act quickly but calmly
• Change compromised passwords immediately
• Contact your bank if payment info was exposed
• Disconnect from the internet if you ran malware
• Report incidents to help protect others