Why is Yandex asking me to change my password?

Your account is most likely hacked, or your password became publicly available. To protect your account from hacking, you need to change your password.

When an account is blocked, the main password as well as any App passwords you were using stop working. Access to your data is also revoked for all sites, programs, and mobile apps. This way, neither you nor the hacker can access your account via Yandex websites or apps.

Note. For more information on how hackers could have figured out your password and gotten access to your account, read Protect your account.

Suspicious activity

Yandex automatically checks your account activity. Is a message sent from your inbox spam? Was there a suspicious authorization, etc.?

If it becomes apparent you couldn't have performed certain actions yourself (for example, log in to your account from both Vladivostok and Moscow within an hour), your account will be automatically blocked. To unblock it, change your password.

The password is publicly available

To check this, Yandex uses a password database which it constantly updated. It contains passwords that somehow became publicly available. For example, it happens if a virus got into the computer or the same password was used on different sites.

If Yandex learns that your password is publicly available, it blocks your Yandex ID for security reasons. You will only be able to log in to it after changing your password.

What to do if Yandex asks you to change your password

This means that you'll have to come up with a new password that only you know. Don't use your old password to prevent the hacker from logging in to your account.

What you need to do:

Before you change your password, check all the computers and other devices that you logged in to using your old password for viruses. Hackers may use a virus to get your new password and log in to your account again.
Log in to Yandex using your current password. In the alert window, click Change password.
Confirm that you are the account owner:
- If you linked your phone number to your Yandex ID, request an SMS confirmation code, enter it on the page, and click Confirm. If you can't access the linked number, then click I no longer use this number.
- If your Yandex ID is not linked to a phone number, answer the security question. If you can't remember exactly what you entered, follow our recommendations for help.
  
  You'll need to link your phone number after answering the security question. This will help you quickly and easily restore access to your account in the future.
- If you didn't link your phone number or set up a security question, but have added an alternate email address, we will send an email with a confirmation code to it.
- If you didn't use a security question, phone number, or alternate email to protect your account, fill out the recovery form or contact support.
Use our recommendations to come up with a new password.
In the account data window, make sure your personal data, phone number, and recovery email addresses are correct. Please note they may have been used when hacking your account. If necessary, change them. If not, click Yes.

I can't pass verification

I forgot the answer to my security questionI have an old phone number linked to my accountI still have questions

If you don't remember the answer, try changing the security question.

To replace or delete a phone number, fill out and submit this form.

If you can't restore access to your account, contact support.