What To Do If Your Phone Has Been Hacked

How To Prevent Your Phone From Being Hacked

So, how do you prevent the nightmare from happening again? With just a few changes to your settings, you can greatly reduce the likelihood of your phone being hacked.

1. 1. Download antivirus software. Antivirus software works by scanning your phone for viruses and malware, then removing any threats to your device. However, not everyone needs antivirus on their mobile device — only Android users. Learn how to get rid of a virus on Android and what the best Android antivirus options are. iPhones and iPads don’t need antivirus software, though they can be hacked in other ways. Antivirus can stop hackers in many cases. Read our antivirus guide to learn more.
   2. Connect to VPNs on public Wi-Fi networks. Public Wi-Fi networks are as convenient as they are insecure. However, VPNs make connecting to public Wi-Fi networks safe. VPNs hide your browsing history and hide your IP address, changing your IP address to hide your location. VPN apps are available for both iPhones and Androids; we recommend the best iPhone VPNs and the best Android VPNs. In some cases, VPNs can stop DDoS attacks, so they’re a great solution for hopping on public Wi-Fi.
   3. Don’t jailbreak. Jailbreaking your iPhone gives you total control over it, from where you download apps to how you arrange your interface. Although we like control as much as anyone, jailbreaking an iPhone means missing out on Apple’s built-in security features, including malware scans. The same goes for Android users. Rooting an Android device is the equivalent of jailbreaking an iPhone, and unless you’re a security expert, we don’t suggest rooting your Android either.

      Note: For Android users, it’s not necessary to root your device to install apps from third parties. That said, it’s always best to install apps only through the Google Play Store.

   4. Avoid phishing. Does something smell phishy? Maybe you got an email from an address you don’t recognize, or maybe you’re entering your login information on a site that doesn’t look quite right. Most antivirus software has protection against phishing, but if you’re unsure, your best bet is not to click on any unfamiliar links, emails, attachments, websites, or messages.
   5. Use encryption. Whether or not you want to remain anonymous online, encryption is a great way to avoid hacking. Look for websites and apps that use end-to-end encryption, ideally the industry standard of 245-bit AES.
   6. Only use trusted charging stations. One of the best things about living in the 21st century is public charging stations. God forbid we’re in public without a smartphone! However, these charging stations carry risks, like someone “juice jacking” your phone’s data through a USB drive. Hackers can easily access your phone’s data through the drive or even run malware. If possible, use an AC outlet instead of a USB charging port, as AC outlets only transmit power, not data. If only a USB is available, use a charge-only adapter or a data blocker. You’ll thank us later!

>> Related Reading: How to Remove Your Phone Number From the Internet

1. Set up phone locks and passcodes. Make sure that if you put your phone down for a certain amount of time, you need a passcode to open it back up. Here’s how to set up passcodes:
   • iPhone X or later:
     1. Click “Settings.”
     2. Click “Face ID & Passcode.”
     3. Click “Turn Passcode On.”
     4. Enter a six-digit passcode.
     5. Enter the passcode again to confirm and activate it.
   • Android:
     1. Click “Settings.”
     2. Click “Security.”
     3. Click “Screen Lock.”
     4. Choose “Standard Locks.”
     5. Choose “Password.”
     6. Enter more than four characters.

        Note: On Android, you can set your lockscreen to open from a PIN, pattern, or a password. We always recommend setting a password as it allows you to use letters, numbers, and special characters. This makes it harder for someone to break into your phone.

2. Add advanced authentication. Whenever it’s available, turn on biometric authentication, also known as multifactor authentication, or two-factor authentication (passcodes) to online accounts. Learn more in our authentication how-to guide.
3. Disable voice assistants on lock screen. Having Siri or Google Assistant available before you unlock your phone is convenient, but it’s not the greatest thing for security. Follow these steps to disable these voice assistants:
   • iPhone:
     1. Go to your phone’s Settings.
     2. Click “Face ID & Passcode” or “Touch ID & Passcode.”
     3. Turn off Siri.
   • Android:
     1. Say, “Hey Google, open Assistant settings” to your phone.
     2. Go to Settings.
     3. Click “Personalization.”
     4. Click “Personal Results.”
     5. Turn on “Lock Screen Personal Results.”
4. Turn on “find my phone.” If you haven’t set up a passcode, a lost phone is a surefire way to get hacked. Fortunately, if you have a passcode and a “find my phone” feature, losing your phone doesn’t mean it’s getting hacked.
   • iPhone:
     1. Go into Settings.
     2. Click your name.
     3. Click “Find My iPhone.”
     4. Turn on “Find My iPhone.”
   • Android:
     1. Go to Settings.
     2. Click “Security.”
     3. Click “Find My Device.”
     4. Turn on “Find My Device.”
5. Turn off autofill. Another convenient feature in many browsers is autofill, which fills out personal information like your name, address, and phone number. However, if your phone gets into the wrong hands, this personally identifiable information (PII) could make you vulnerable to identity theft, so it’s best to disable it on your mobile browsers. Below, we’ve listed the instructions for Safari, the default browser on iPhones, and Chrome, the default browser on Androids.
   • iPhone:
     1. Click “Settings.”
     2. Click “Safari.”
     3. Turn off “AutoFill Passwords.”
   • Android:
     1. Open the Google app.
     2. Tap “More.”
     3. Tap “Settings.”
     4. Tap “General.”
     5. Turn off “Autocomplete With Trending Searches.”
6. Limit app permissions. Go into your phone’s settings, click on different apps, and see what permissions they have. Is your Google Maps app tracking your location at all times? Can your dating app see your text messages? For the most privacy, limit permissions as much as you can on various mobile apps.
7. Disable location tracking. Location tracking is a particularly scary concept that’s all too common in mobile apps these days. With location tracking on, a hacker could potentially follow you around, which means the digital threat could turn into physical danger. Follow these steps to disable it:
   • iPhone:
     1. Click “Settings.”
     2. Click “Privacy.”
     3. Click “Location Services.”
     4. Toggle off “Location Services.”
   • Android:
     1. Swipe down on your Android’s screen.
     2. Touch and hold “Location.”
     3. Click “Advanced.”
     4. Click “Google Location Accuracy.”
     5. Turn off “Improve Location Accuracy.”
   • Samsung Android One UI:
     1. Open “Settings”
     2. Click “Location”
     3. Click the “On” toggle so it says “Off”
8. Turn off Wi-Fi. We’ve already mentioned the dangers of public Wi-Fi networks, but if your Wi-Fi is enabled by default, your phone may be joining networks without you knowing it. Instead, only use Wi-Fi on an ad hoc basis. Follow these steps to turn it off:
   • iPhone:
     1. Click “Settings.”
     2. Click “Wi-Fi.”
     3. Toggle Wi-Fi off.
   • Android:
     1. Swipe down on your Android’s screen.
     2. Touch and hold “Wi-Fi.”
     3. Turn off “Use Wi-Fi.”
9. Perform software updates. Software updates contain the latest security patches, so even though they may be annoying, perform them as soon as they’re available.
   • iPhone:
     1. Click “Settings.”
     2. Click “General.”
     3. Click “Software Update.”
     4. Click “Download and Install.”
     5. Click “Install.”
     6. Enter your passcode.
   • Android:
     1. Click “Settings.”
     2. Click “System.”
     3. Click “Advanced.”
     4. Click “System Update.”
10. Use secure passwords. The easiest way to protect your phone (and all of your other online accounts) is to use strong passwords. Each account should have a totally unique password.

Tip: To remember all of your passwords, store them in a password manager, an encrypted digital vault. Learn more about our favorite password managers for Android.