If you have given out banking details, call your bank using the number on the back of your bank card immediately. If you don't have your bank card to hand you can find the contact number on your banks website.
7% of adults suffered fraudulent credit or debit card use during the last 12 months from using the internet
If you have provided a password for an account to a site then though it doesn’t seem right, change that site password immediately. This is an area where a password manager really helps two-fold. The password manager will only offer to fill the password for a website if it matches, a vital pointer to whether you’re visiting the site you expected to be in the first place. Secondly as the password is just a randomly generated string, you’re unlikely to be able to enter it off the top of your head. I always use long passwords generated via a password manager and have no idea what they are.
This next recommendation might tread on some toes but can mitigate some risk, especially if it's out of office hours. If you have a company approved method to reset your account password, change it immediately to something totally different. You should then contact your IT Help Desk straight away or as soon as they are open if out of hours.
If you have downloaded or installed something and are concerned it isn’t right, run an offline antivirus scan. If you’re using Microsoft Defender there’s a guide on the Microsoft site.
Finally report any suspected cyber crime online to Action Fraud or by calling 0300 123 2040. Even if you have already reported it to your bank I would urge you to do this, the more awareness there is of the scale of these types of crime, the more resources will be allocated towards addressing and preventing them.
Other articles in this series: