Posted On: September 4, 2025 by Prevail Bank in: Banking / Money Management Fraud
Data Breaches: 12 To Dos if Your Information was Compromised
In today’s digital world, data breaches have unfortunately become more common. From major retailers to healthcare providers, even financial institutions — no organization is completely immune. If you've received a notice saying your personal information was compromised/stolen in a data breach, it can be unsettling, but don’t panic. Taking the right steps quickly can help minimize the damage and protect your identity.
Here’s what you should do if your personal data has been exposed:
1. Read the Breach Notification Carefully
If a company contacts you about a data breach, review their notice closely. The level of risk depends heavily on the type of information taken. Find out:
- What information was compromised (e.g., Social Security number, banking info, login credentials, your email…)
- When the breach occurred
- What the company is doing in response (e.g., offering credit monitoring)
Tip: Always confirm the legitimacy of the notice — scammers sometimes send fake “breach” emails to trick you into clicking malicious links.
2. Change Affected Passwords & PINs Immediately
If login credentials were exposed:
- Change passwords right away — especially if you use the same password across multiple accounts (which isn’t recommended).
- Use strong, unique passwords for each account – ideally 16 characters or longer, combining letters, numbers, and symbols.
- Consider using a password manager to keep track of them securely.
3. Remove Your Information from Searches
If your personal information was posted online, file a request to have it removed.
Google - Google provides a form for requesting the removal of information that appears in search results and on websites. You can also use the "Results about you" feature in your Google account to manage and remove contact information from search results.
Bing – Bing acquires its data from websites, so make sure those other websites remove your information from their sites as well.
4. Enable Two-Factor Authentication (2FA) or Multi-Factor Authentication (MFA)
For accounts that support it, enable 2FA. This adds a second layer of security (like a text code or authentication app) and helps protect your account even if your password is stolen.
5. Monitor Your Bank and Credit Accounts
Check your accounts regularly for any suspicious activity:
- Unfamiliar charges
- New account openings
- Changes to contact information
Most online banking platforms offer eStatements and alerts (Prevail Bank does) that make this a lot easier.
If you spot anything suspicious, report it to your bank, credit card company, or the relevant institution immediately.
If your debit or credit card was involved, request a new one, if a replacement isn’t automatically being issued to you.
6. Let Your Financial Institution Know
Tell your bank about the breach. They can monitor your accounts more closely and add fraud alerts to help prevent unauthorized transactions.
If your medical information was compromised, contact your health provider and insurance company and inform them about the incident. Check your FSA/HSA accounts for any unusual activity.
7. Consider a Fraud Alert or Credit Freeze
If your Social Security number or other sensitive identity info was stolen, consider:
- Fraud Alert: Tells creditors to take extra steps to verify your identity before opening new accounts. It’s free and lasts one year.
- Credit Freeze: Prevents new accounts from being opened in your name without lifting the freeze. You’ll need to contact each of the three credit bureaus (Equifax, Experian, and TransUnion) separately to set this up.
8. Check Your Credit Reports
You’re entitled to a free credit report from each of the three major credit bureaus annually at AnnualCreditReport.com. Review them for new account openings and activity you don’t recognize.
9. File an Identity Theft Report if Necessary
If you suspect your data is being misused, file a report with the Federal Trade Commission (FTC). This helps law enforcement track fraudsters and supports you in restoring your identity and finances.
10. Take Advantage of Free Credit Monitoring (If Offered)
Many companies offer free credit monitoring after a breach. If it’s from a reputable source, it can help alert you to suspicious activity quickly. It’s typically available for 12–24 months depending on the breach.
11. Be Extra Cautious of Phishing Scams
After a breach, scammers may try to exploit your concern. Phishing attempts often spike after breaches.
- Never click suspicious links in emails or texts
- Don’t provide sensitive info over the phone unless you made the call using a number YOU KNOW to be true
- Be wary of "urgent" messages asking you to take immediate action
12. What Don’t You Know?
www.haveibeenpwned.com was created as a free resource for anyone to quickly learn if any of their accounts have been exposed or compromised. Data breaches are rampant; you don’t get notified of them all. Check yourself out! You’ll be asked for your email.
You can also test individual passwords anonymously to see if they’ve been leaked; go to: www.haveibeenpwned.com/passwords.
Final Thoughts
Finding out your personal data was exposed in a breach is frustrating — and sometimes scary — but acting quickly can protect you from further harm. Data breaches have become increasingly common.
Keep your devices’ software and security updates current. Remember, your financial safety and personal identity are worth defending.
At Prevail, we care about your security and peace of mind. We encourage you to reach out if you have questions, need assistance protecting your accounts, suspect fraud, or have questions about your financial safety. We’re here to help.
If you’d rather be proactive and protect yourself before a breach occurs, Prevail Bank does offer ID Theftsmart™ --- Identity theft counseling & restoration services for $3.95*/month for your entire household.
* Cost is subject to change.
Other Helpful Resources:
