WHAT TO DO IF YOU'RE THE VICTIM

 

                                      

Disconnect From the Internet Disconnecting from the internet acts as an immediate "quarantine" for your device. It halts the active threat by cutting its lines of communication. Here’s what this prevents:

1. Stops Data Theft: Many types of malware (like spyware, keyloggers, or trojans) are designed to steal your personal information—passwords, bank details, documents—and send it to a remote server controlled by the attacker. Disconnecting prevents this exfiltration.

2. Blocks Remote Control: In cases of a serious breach, an attacker may have remote control over your device. By disconnecting, you sever their "command and control" link, rendering them unable to issue new commands, manipulate your files, or use your device for further attacks.

3. Prevents Further Damage: Some malware can download additional, more harmful payloads once the initial infection is successful. Disconnecting stops it from pulling down ransomware (which would encrypt your files) or other destructive software.

4. Halts Spread: If the malware is a worm, it will try to spread to other devices on your network and beyond. Isolating your device contains the infection.

How to Disconnect:

• Wi-Fi: Turn it off using the quick settings on your device or by disconnecting from your network.

• Ethernet: Simply unplug the physical cable from your computer.

• Mobile Data: For smartphones and tablets, enable "Airplane Mode."

Once disconnected, you can safely proceed with the next steps, like running offline antivirus scans or seeking help from a professional, without the threat actively worsening in the background.

  Change Your Passwords

Once you've disconnected the infected device, use a different, clean device (like your phone or another computer) to change your passwords. Start with your most critical accounts, such as email and online banking, as these are primary targets. This is crucial because the malware may have captured your old passwords, giving the attacker ongoing access. By changing them from a safe device, you lock them out and regain control of your accounts. 

Enable Two-Factor Authentication (2FA)

Enable Two-Factor Authentication (2FA) to add a vital second step to your account logins. Even if a hacker steals your password, they won't be able to access your account without this second piece of information, which is usually a code from your phone, an app, or a physical key. This creates a powerful barrier that protects your most important accounts from unauthorized access.

Report the Incident

You should notify the relevant platform or authority about what happened. This could be your email provider, social media site like Instagram, your bank, or your school's IT helpdesk.

Reporting the incident serves two key purposes:

1. It alerts them to a potential threat on their system, which helps them protect other users.

2. For your specific case, it can trigger their security protocols—like restoring a hacked account or investigating suspicious activity—which helps resolve your situation faster and helps prevent the attacker from targeting others.

Seek Help From Adults or Authorities

Don't handle a cybersecurity issue alone. Immediately inform a trusted adult, like a parent or teacher, who can provide guidance and support.

For serious matters such as online fraud, threats, or blackmail, you should contact your local cybercrime authorities. They have the expertise to properly investigate and take legal action, helping to protect you and others.

Scan and Clean Your Device

Run a full system scan using reputable antivirus or anti-malware software. This will search for, identify, and remove or quarantine any malicious programs it finds. Be sure to follow the software's prompts to completely remove any threats. For persistent issues, you may need to seek professional technical help.

Source:

• StaySafeOnline.org – What To Do If You’re a Victim

• Cyberbullying Research Center – Responding to Cyberbullying