Overview
This article provides steps to take if your account has been compromised and further information to keep it secure.
Recovering your account
If you believe that your account has been compromised, you must contact the DreamHost Security team so that they can prevent further damage and exploitation of your account.
If you have access to the DreamHost account
- Navigate to the Contact Support page.
- Select Abuse/Security from the dropdown menu.
- Fill out the message field with as much information about the issue as you can.
- Click the Submit a ticket button to complete the process. The Security team will review your ticket and respond to you as soon as possible.
If you do not have access to the DreamHost account
- Navigate to the DreamHost contact page.
- Under the section labeled What do you need help with? select I can't log in to my DreamHost account from the dropdown menu.
- Fill out the required fields with as much information about the issue as you can.
- Click the Send your question button to complete the process. The Security team will review your message and respond to you as soon as possible.
Keeping your account secure
This section provides recommended best practices to keep your account secure.
Don’t share credentials
-
Do not share your passwords with anyone. If someone requires access to your account, try alternate options such as creating a new user for them or giving them panel access through Account Privileges.
See this article to learn how to set up Account Privileges.
Follow password guidelines
-
See this article for DreamHost's guidelines on choosing secure passwords.
Enable Multifactor Authentication
-
Multifactor Authentication requires a one-time passcode to be entered before you can gain access to your DreamHost account. DreamHost recommends enabling this service to give your account an extra layer of security should the password be compromised.
See this article to enable multifactor authentication for your account.