It started with a text from your daughter: “Mom, did you send me this? It looks weird.” You hadn’t sent anything. You check your email and there it is — a message in your Sent folder, addressed to everyone in your contacts. You didn’t write it. But it came from your account.
This is one of the most common ways people discover their email has been hacked — not by catching it themselves, but by hearing from someone they love. And by that time, the damage may already be underway.
The good news is that hacked accounts often leave clues before things spiral. Knowing what to look for can make the difference between catching a breach early and dealing with weeks of fallout.
Sign #1: Emails or Messages in Your Sent Folder That You Didn’t Write
The most tell-tale sign of a compromised email account is activity you didn’t initiate. Open your Sent folder and scan recent messages. If anything looks unfamiliar — especially messages with short, urgent text and a strange link — your account may have been used without your knowledge. The same applies to Facebook, Instagram, or any other platform with a messaging feature.
Sign #2: Friends or Family Tell You They Got a Strange Message From You
Because many people don’t check their Sent folder regularly, this is often how a hack surfaces. A friend reaches out to ask about the odd link you “sent.” A family member got a message asking them to click something. If even one person tells you this, take it seriously and check your account immediately.
Sign #3: You’re Suddenly Locked Out of Your Own Account
If you try to log in and your password doesn’t work — even though you’re certain you’re typing it correctly — there’s a real possibility someone has already changed it. Hackers who want control of an account often change the password right away so the real owner can’t get back in.
Sign #4: You Receive a Password Reset Email You Didn’t Request
Password reset emails that arrive out of nowhere are a red flag. They usually mean someone entered your email address somewhere and clicked “Forgot my password” — which is the first step in a takeover attempt. Don’t click the link in those emails. Go directly to the website and change your password from there.
Sign #5: Login Alerts From Unfamiliar Locations or Devices
Many email providers and social media platforms send you a notification when your account is accessed from a new device or location. If you get one of these alerts and don’t recognize the device or place, treat it as a warning. Most platforms will show you active sessions — log out all of them and change your password immediately.
What to Do If You See These Signs
Don’t wait to act. The sooner you respond to a compromised account, the less damage a hacker can do.
Start by changing your password immediately — use something long and unique that you haven’t used anywhere else. Then turn on two-factor authentication if you haven’t already. This adds a second step to logging in (usually a code sent to your phone), which makes it much harder for someone to access your account even if they have your password.
Next, review your account’s recent activity. Look for sent messages you don’t recognize, changes to your recovery email or phone number, and any apps or services connected to your account. Remove anything that looks unfamiliar.
Finally, let your contacts know — especially if messages were sent from your account. A simple note saying “My account was compromised — please ignore any recent links from me” can save a lot of people from clicking something dangerous.
How LurkAlert Helps
Most account hacks happen quietly, long before you get that first call or text from a worried friend. LurkAlert’s monitoring center watches for the kinds of activity that signal your computer or online accounts may be under attack — so you hear about it sooner, not after the damage is done. If you’re ever unsure whether something you’re seeing on your screen is suspicious, our team is ready to walk you through it.
Because knowing what’s happening on your computer shouldn’t require a degree in cybersecurity. That’s what we’re here for.
