1. Home
  2. Support
  3. AT&T Mail

Recover a hacked email account

Learn how to recover a hacked email account—and find out how you can prevent future security risks.

Signs an account may be at risk

It's possible your account has been hacked, phished, or is at risk if you:

  • Get a notice from the AT&T Internet Services Security Center that an email address on your account sent spam emails
  • Get complaints about spam being sent from your email address.
  • Don’t get any email
  • Seem to be missing email
  • Get a lot of undeliverable or bounced messages that you didn't send
  • Can't sign in to your email account
  • See strange emails in your Sent folder and you didn’t send them
  • Get an email about winning a type of reward, such as an AT&T Reward

How does it happen? Email IDs, passwords, and other private details can be compromised through phishing attempts or malware. After the info is captured, spam or fraudulent emails can be sent from your account.

Recover your account

Here are several steps you can take to protect yourself and your account information.

Change email password

Changing your password right away reduces the security risk to your AT&T email account. Once you’ve made sure that all devices on your network are free from malware and your email security settings are valid, be sure to change your password again.

  1. Go to your account profile. Sign in, if asked.
  2. Select Edit for your Password.
  3. Follow the prompts to complete the change.

Secure your computers

Protect your computers from malware that steals your passwords and other personal data.

  • Scan all computers with an up-to-date antivirus program. 
  • Use an up-to-date anti-malware application, as some malware isn't detected by antivirus scans
  • Make sure you keep your operating system up-to-date with the recommended security updates

Review and update your email settings

Access your AT&T email settings by hovering over the gear icon, then choosing Settings. Review these areas for suspicious activity:

  • Email signature: Look for any changes to your signature or content that you don’t recognize.
  • Accounts: Check each of your email accounts. Select Edit to view your account details and look for any unknown or incorrect accounts listed under POP or Forward.  Check the sending name, reply-to address, spam settings, and any other details. Delete any unknown or incorrect accounts.
  • Vacation response: Disable the Vacation Response unless you need it.
  • Blocked addresses: Make sure your email address isn't listed in the Blocked Email Addresses list. If it is, remove it and select Save.
  • Contacts: Make sure the details for your contacts are correct. Delete any unknown or unfamiliar ones.
Last updated: December 12, 2025

Did you get the help you needed?

Did you get the help you needed?