What to Do If You Entered Your Credentials on a Suspicious Page

• • Change the password or the affected account as soon as possible
  • Chose a strong, unique password that is not used elsewhere
  • If the same password is used for other services, change it for those accounts as well

🔄 2. Sign Out of Active Sessions  → This helps ensure that any unauthorized access already established is terminated

• • Sign out of all active sessions and devices (global sign-out, if available)
  • Sign back in only after changing your password

🔐 3. Strengthen Account Security  → Additional security measures can help prevent further unauthorized access

• • Enable Multi-Factor Authentication (MFA) if it is not already enabled/li>
  • Review your account security settings
  • Check for unauthorized changes, such as email forwarding rules or modified recovery options

🔍 4. Review Account Activity  → This can help determine whether the account has already been misused

• • Check for:
    • Unrecognized sign-ins
    • Emails sent without your knowledge
    • Changes to account data or settings
  • Continue monitoring account activity after changing your password.

📸 5. Collect Evidence  → This information may assist with incident investigation and prevention

• • Save the URL of the suspicious page
  • Take screenshots of the page, if available
  • Record the date and time of the incident

📣 6. Contact Technical Support  → Technical support may be able to apply additional protective measures and monitor for suspicious activity

• • Report the incident as soon as possible
  • Include:
    • Confirmation that credentials were entered on a suspicious page
    • When the incident occurred
    • Any actions already taken (e.g., password change, MFA activation)