Contact Us
Download MySudo

Knowledge Center > Identity Theft and Fraud > Twitter (X) Account Recovery

What do I do if my Twitter (X) account gets hacked?

If your Twitter (now X) account gets hacked, you can usually recover it—but speed matters. Follow these steps in order to regain access and prevent further damage.

Step 1: Go to Twitter's (X's) official account recovery page

Start here (this is the official path):

http://help.x.com → Account access → Hacked or compromised account, then “I think my account has been compromised.” The direct form is at https://help.x.com/en/forms/account-access/regain-access/hacked-or-compromised . It asks if you can still log in (Yes/No), often requires a password reset first via https://twitter.com/account/begin_password_reset (or x.com equivalent), then guides next steps. If locked out, it funnels to a support request form.

If still able to log in → Follow the dedicated “compromised account” page

http://help.x.com → Change password → Secure email → Revoke third-party apps/connections → Update recovery info → Enable 2FA → Contact support if needed.

If locked out → Use the hacked form, provide username, associated email (even if changed), last access date, and details of compromise. Twitter (X) may send instructions to the original/associated email.

This flags your case correctly inside Twitter’s (X’s) system.

Step 2: Secure your email first

Twitter (X) recovery depends on email access. If a hacker controls your email, they control Twitter (X).

  • Change your email password immediately

  • Enable two-factor authentication (2FA) on email

  • Check for forwarding rules or recovery email changes

Do this before attempting X recovery.

Step 3: Reset your Twitter (X) password

If you still have access:

  • Change your password right away
  • Choose log out of all sessions
  • Use a new, unique password never used anywhere else

If you’re locked out, request a password reset through the recovery flow.

Step 4: Reverse unauthorized activity

During recovery, confirm anything you didn’t do:

  • Tweets you didn’t post
  • Messages you didn’t send
  • Profile changes
  • Ads or promotions

Twitter (X) uses this info to assess compromise severity.

Step 5: Remove suspicious access and apps

Once you regain access:

  • Remove unfamiliar connected apps
  • Review active sessions and revoke anything suspicious
  • Check email address and phone number on the account

Hackers often leave backdoor access.

Step 6: Check ads and paid features

If you’ve ever used:

  • Twitter (X) Ads
  • Subscriptions (e.g., Premium)

Review billing activity immediately and dispute unauthorized charges.

Step 7: Enable strong security protections

After recovery:

  • Turn on Two-Factor Authentication (authenticator app preferred)
  • Enable login alerts
  • Limit DMs from unknown users
  • Lock down email and phone recovery options

This dramatically reduces repeat attacks.

Step 8: Warn your followers (briefly)

If spam or scam posts went out, post a short message:

“My account was compromised earlier—please ignore any recent strange posts or links.”

Delete it after visibility drops.

If you can't recover the account

Try these escalation steps:

  • Repeat the hacked account flow after 24–48 hours
  • Submit a support request from a known device/location
  • If ads or billing were involved, use Twitter (X) Ads Support (they respond faster)

Twitter (X) does not offer phone support for most users, so persistence matters.

How long does Twitter (X) account recovery take?

  • Simple cases: a few hours
  • Typical: 1–3 days
  • Complex cases: up to a week

Delays usually happen if email access is compromised of billing is involved.

How Twitter (X) accounts get hacked (so it doesn't happen again)

Most compromises happen due to:

  • Password reuse from other breaches
  • Phishing DMs or emails
  • Fake “verification” or copyright warnings
  • Compromised email accounts

Best prevention steps:

  • Use a password manager
  • Enable app-based 2FA
  • Never click links in unsolicited DMs
  • Remove old connected apps

Final advice

Account recovery is about locking down email first, then Twitter (X). If you skip that order, hackers often regain access.

Please note: Twitter occasionally changes their account recovery procedures, so refer to their website if these steps are not working. Good luck!

Topic

Identity Theft and Fraud

Sub Topics

Facebook Account Recovery

Instagram Account Recovery

Twitter (X) Account Recovery

Email Account Recovery

Talk to sales