High riskIdentity Theft & Data Scams

Fake Breach Notification Scam

In this scam, fake data breach or 'your account was leaked' alerts urge you to click a link to secure your account or pay for protection, stealing your login, payment, and personal details instead.

Quick verdict

Risk level
High risk
Scam type
Phishing (identity)
Main red flag
A breach alert urging you to click a link to secure your account or pay for protection.
What to do first
Do not click; log in to the real service directly to check your account.

What this scam usually looks like

In this scam, fake data breach or 'your account was leaked' alerts urge you to click a link to secure your account or pay for protection, stealing your login, payment, and personal details instead.

Example message pattern

Example pattern — not a real report
Example pattern: 'Security alert: your data was found in a breach. Click here to secure your account and enable protection immediately.'

This is a fictional, anonymised example used to illustrate the pattern. It is not a verified real message, and any names are used only to show how the scam typically reads.

Red flags to watch for

  • A breach alert with an urgent 'secure now' link
  • Requests to log in or pay via the message
  • Pressure created by fear of identity theft
  • A sender or domain you cannot verify
  • Demands for personal or payment details to 'protect' you

What to do

  • Log in to the real service directly to check, not via links
  • Change passwords from the official site if needed
  • Enable two-factor authentication where possible
  • Report phishing breach alerts

If you already clicked or replied

  • Change the password for any account you entered
  • Enable two-factor authentication
  • Contact your bank if you shared payment details
  • Keep records and report it

What not to do

  • Do not click 'secure your account' links in alerts
  • Do not pay for protection via a breach message
  • Do not log in through links in unexpected alerts

Similar scams

Medium risk Identity Theft

Data Broker Removal Scam

In this scam, fake or dishonest services promise to remove your personal data from data brokers and people-search sites, charging fees or harvesting even more personal information while doing little or nothing.
High risk Identity Theft

Account Takeover Scam

In this scam, a fraudster gains access to your email, bank, or shopping accounts, often after phishing or a data breach, then changes details, makes purchases, or uses the account to attack others.
Medium risk Identity Theft

Fake Credit Freeze Scam

In this scam, fraudsters pose as credit bureaus or offer paid 'credit freeze' or lock services, charging fees and harvesting identity details for a process you can do yourself for free with the credit agencies.

Frequently asked questions

Was my data really breached?
Maybe, but verify independently. Log in to the real service directly and check trusted breach-checking tools, rather than clicking links in the alert.
Should I pay for the protection it offers?
No. Genuine breach notifications do not demand payment via a link. Such offers exist to harvest your payment and personal details.
I clicked and logged in. What now?
Change that account's password, enable two-factor authentication, contact your bank if you shared payment details, and report it.
How do real breach alerts work?
Genuine services notify you and let you act by logging in directly. They do not pressure you to click a link or pay for urgent protection.

Last reviewed: June 2026

Disclaimer: This page provides educational information only to help you recognise common scam patterns. It is not legal, financial, cybersecurity, or law enforcement advice, and it does not confirm whether any specific message, company, or person is genuine or fraudulent. When in doubt, contact the official organisation directly and report concerns to your local authorities.