BSI: Checklist for action in case of compromised accounts
The BSI has published a checklist for private users that provides assistance with measures for compromised accounts.
(Image: Black Salmon/Shutterstock.com)
The Federal Office for Information Security (BSI) has, together with the Police Crime Prevention Program (ProPK), published a checklist to help private users when their accounts have been taken over by criminals.
The checklist is available as a PDF on the BSI website. In it, the authority warns of the consequences: criminals can then not only view and misuse data stored in hijacked accounts, such as addresses or credit card information, but also sell illegal goods or send spam. Compromised email accounts are considered particularly critical. This allows for more credible communication with potential further victims, but often they are also stored to reset passwords for other services used.
The BSI provides tips on how affected individuals can recognize compromised accounts. If access is no longer possible, the password may have been reset. Or the provider has blocked the account due to suspicious activity. Further points explain how best to proceed in this case. The checklist also provides tips for better account protection. For example, activating two-factor authentication is mentioned—in second place after switching to passkeys.
Survey Results “Cybersecurity Monitor 2025”
The results of the “Cybersecurity Monitor 2025” underscore the need for such guidance. This is a “Computer Assisted Web Interviewing (CAWI)” survey by BSI and ProPK among 3061 people from the German-speaking population aged 16 and over, conducted from February 3 to 7, 2025. According to the survey, almost one in ten people impacted by cybercrime last year experienced unauthorized access to an online account (8 percent).
Videos by heise
Karin Wilhelm, consumer protection expert at the BSI, said: “An emergency can quickly become overwhelming; many people don't know how to react at first. Especially in the case of an email account, quick action can prevent further damage. If cybercriminals maintain unauthorized access to the account, they can read sensitive data, send emails to registered contacts, or reset passwords and login procedures for other user accounts. That's why it's so important to act immediately. The checklist is intended to empower those affected.”
The BSI offers further helpful materials. For example, in September, the authority published free worksheets for teachers and parents, with which young people can be educated about cyber risks.
(dmk)
