Built for hospitals, schools, NGOs and activists in the Global South · Available in 6 languages

Got hacked. No security team. We're here.

Free cybersecurity first aid for hospitals, NGOs and small organizations — nonprofit ransomware attack response, phishing recovery, data breach help — 24/7, no account, no cost.

Hospitals. Schools. NGOs. Small organizations face cyberattacks every day with no budget, no team, and no one to call. TeraDef gives them the same incident response guidance enterprise organizations pay thousands for — completely free, forever. You're not alone — help starts here in seconds, no judgment. Learn who built this →

Get Free Emergency Help Check if your email was leaked → ☕ Keep TeraDef free — Support on Ko-fi
37%
of NGOs report inadequate cyber resilience vs 11% in private sector (WEF 2026)
36%
surge in ransomware attacks on hospitals in late 2025 — healthcare is the #1 target
$0
cost to use TeraDef — always free, no account, no ads, no vendor lock-in
4B+
people in organizations with no dedicated security team worldwide
New in v1.3 — Breach Check

Has your email appeared in a breach?

We check against 14 billion+ leaked records from real data breaches. Your email is never stored — this is a live, private check only.

We never store, log, or share your email.
New — Social Media Recovery

Instagram hacked? Facebook? TikTok? Discord?

Step-by-step recovery for the most common attacks. Free, instant, private. Pick your platform below.

🕐 Steps verified: Feb 2026 — Official source ↗
  • 1
    Go to Settings → Account → Password and change it immediately.
  • 2
    Go to Settings → Security → Login Activity — tap every unknown session and select "Log Out".
  • 3
    Turn on Two-Factor Authentication: Settings → Security → Two-Factor Authentication — use an authenticator app.
  • 4
    Check Settings → Personal Info — make sure your email and phone number haven't been changed.
  • 5
    Go to Settings → Security → Apps and Websites — remove any app you don't recognize.
  • 1
    On the Instagram login screen, tap "Get more help?" or "Forgot password".
  • 2
    Visit help.instagram.com and search "hacked account".
  • 3
    Select "Need more help?" → Instagram may ask for a selfie video to verify identity.
  • 4
    If the hacker renamed your account: search your old username → Report → It's pretending to be me.
  • 5
    Warn your followers through another platform about suspicious DMs from your account.
🕐 Steps verified: Feb 2026 — Official source ↗
  • 1
    Go to Settings → Security and Login → Change Password immediately.
  • 2
    Security and Login → Where You're Logged In — log out every session that isn't you.
  • 3
    Enable Two-Factor Auth: Security and Login → Two-Factor Authentication.
  • 4
    Check Settings → General → Email — verify recovery email hasn't been changed.
  • 5
    Go to Settings → Apps and Websites — remove any unrecognized app.
  • 1
    Go directly to facebook.com/hacked — Facebook's official recovery page.
  • 2
    Or try facebook.com/login/identify — enter your email, phone, or name.
  • 3
    If you set up Trusted Contacts: "Forgot password?" → "No longer have access to these?" → Reveal My Trusted Contacts.
  • 4
    Facebook may request a government ID — upload it. This is legitimate.
  • 5
    Contact support at facebook.com/help/contact.
🕐 Steps verified: Jan 2026 — Official source ↗
  • 1
    Go to Profile → Settings → Security → Password — change it immediately.
  • 2
    Settings → Security → Login Activity — remove any device you don't recognize.
  • 3
    Enable Two-Step Verification: Settings → Security → 2-step verification.
  • 4
    Check Settings → Account → Phone and Email — verify contact info hasn't changed.
  • 5
    Change the password on your linked email account too.
  • 1
    Open TikTok app → "Forgot password?" → try recovering with linked email, then phone number.
  • 2
    Login screen → Problems logging in → My account was hacked.
  • 3
    Submit a support request at support.tiktok.com → Hacked or Compromised Account.
  • 4
    TikTok typically responds within 24–48 hours via email. Check spam folder.
  • 5
    Ask a trusted friend to report your hacked account for impersonation while you wait.
🕐 Steps verified: Feb 2026 — Official source ↗
  • 1
    Go to User Settings → My Account → Change Password immediately.
  • 2
    Settings → Privacy & Safety → Authorized Apps — revoke any app you don't recognize.
  • 3
    Enable Two-Factor Authentication: Settings → My Account → Enable Two-Factor Auth.
  • 4
    Change your linked email password too if it was the same.
  • 5
    If you own servers: alert your members through another platform immediately.
  • 1
    Discord login page → "Forgot your password?" → enter your email.
  • 2
    If your email is also compromised: support.discord.com → Submit a Request → Hacked Account.
  • 3
    Visit dis.gd/support and explain both accounts were compromised.
  • 4
    Notify server members immediately using another communication channel.
  • 5
    Ask trusted members to watch for scam messages from your account.
🕐 Steps verified: Mar 2026 — Official source ↗
  • 1
    Go to Settings → Linked Devices — remove any device you don't recognize.
  • 2
    Enable Two-Step Verification: Settings → Account → Two-Step Verification → Enable.
  • 3
    Warn your contacts to ignore any unusual messages from you recently.
  • 4
    Never share your 6-digit OTP code with anyone — WhatsApp never asks for this.
  • 5
    Tighten Settings → Privacy — set Last Seen, Profile Photo to "My Contacts" only.
  • 1
    Re-install WhatsApp and register with your phone number — this logs out whoever took over.
  • 2
    You'll receive a 6-digit OTP on your SIM — enter it. Wait 5 minutes if you don't receive it.
  • 3
    If WhatsApp shows a 7-day waiting period — this is a security feature. Wait it out.
  • 4
    Once recovered: enable Two-Step Verification immediately.
  • 5
    Warn contacts via SMS or email: "My WhatsApp was hacked — ignore messages from me recently."

After recovery — do these 5 things to stop it happening again

  • Use a unique password for every account — never reuse passwords across platforms
  • Enable Two-Factor Authentication using an authenticator app (not SMS) on every account
  • Never share OTP codes with anyone — legitimate services never ask
  • Check "Linked Devices" or "Active Sessions" in each platform monthly
  • Use a strong unique password on your email — it's the master key to everything else
Module 01 — Cyber First Aid

Under attack. No team. Right now.

It's 2am. Files are encrypted. Nobody to call. Describe what happened and get calm, expert guidance in plain language — free, 24/7.

  • Hospital with ransomware at 3am
  • NGO with a data breach and no IT team
  • School staff who clicked a phishing link
  • Anyone who just got hacked
Cyber First AidFree · No account
What happened?
Quick examples
Describe what's happening

Ctrl+Enter to submit

AI guidance, not a substitute for professional incident response. For critical emergencies, also contact your national CERT.

Module 02 — CyberWeather

Weekly threat
forecast for
your org type.

Like a weather report — but for cyber risk. Tailored to your organization type and region. Plain language. Zero jargon.

  • Hospitals wanting to know current attack trends
  • NGOs in high-risk regions
  • Schools and education orgs
  • Any org with no dedicated security team
CyberWeather ForecastUpdated weekly
Your organization type
Your region
Module 03 — ShieldHuman

Digital safety for
people who need
it most.

Journalists. Activists. Survivors. Facing surveillance, harassment, or targeted digital attacks. Get a personalized digital protection plan — compassionate, specific, free.

  • Journalists facing surveillance or targeting
  • Activists in high-censorship environments
  • Survivors of domestic or digital abuse
  • Human rights defenders at risk
ShieldHuman — Personal SafetyPrivate · Anonymous
Your role
Risk level (1 = low, 5 = critical)
LowMediumMediumHighCritical
Describe your situation

Nothing you type is stored. For immediate physical danger: contact local emergency services first.

Module 04 — VulnBridge

Safe disclosure.
No legal risk.

Found a security vulnerability? VulnBridge helps you report it safely — especially if you're in a country where disclosure is legally risky. Anonymous, guided, free.

  • Security researchers in the Global South
  • Students who found a vulnerability
  • IT staff who found a flaw in their org
  • Anyone afraid of legal consequences
Anonymous Vulnerability DisclosureAnonymous · Free
Type of vulnerability
Your country / region Describe what you found

Your report is never stored or forwarded without your consent. You are doing the right thing.

New — Community

When one organization survives, everyone gets stronger.

Hospitals, schools, and NGOs share real cyberattack survival stories — what happened, what worked, and what didn't. Anonymous. Free forever. Like Waze for cyberattacks.

No security team needed — just a story, or a willingness to help others. Every incident shared protects the next organization facing the same attack.

Join the Community — Free → Learn more →

Four modules.
One mission.

Free cybersecurity for everyone who has never had any.

01

Cyber First Aid

Emergency AI response for organizations under attack — ransomware, breach, phishing. Calm guidance when there's no one else to call.

Live Now
02

CyberWeather

Weekly AI threat briefings for your org type and region. Plain language. Actionable. Like a weather forecast for cyber risk.

Live Now
03

ShieldHuman

Digital safety for journalists, activists and survivors facing surveillance or targeted digital threats.

Live Now
04

VulnBridge

Anonymous vulnerability disclosure for researchers in the Global South — safe, neutral, no legal risk.

Live Now
Plain English — No Jargon

What to do if your nonprofit or NGO gets hacked

The three attacks that hit small organizations most — and free recovery steps.

Threat 01

Nonprofit Ransomware Attack

Your files are locked by criminals who demand money to unlock them. Hospitals, schools and NGOs are the most targeted globally — ransomware attacks on healthcare surged 36% in 2025.

Right now:

Disconnect from internet immediately. Do not restart. Do not pay. Use First Aid above.

Threat 02

Phishing Attack Recovery Steps

A fake email or message tricks someone into clicking a bad link. In 2026, attackers use AI to write convincing messages in local languages — Arabic, Hindi, Swahili, Tagalog.

Prevention:

Never click links in emails. Type the website address directly into your browser.

Threat 03

Charity Organization Data Breach Response

Someone stole your patient records, student data, or donor information. NGOs are 3× more likely to suffer breaches than private companies — and rarely find out until it's too late.

Right now:

Change all passwords from a clean device. Notify affected people within 72 hours.

Common questions

What should I do if my nonprofit or small organization gets hacked?+
Isolate affected systems immediately — unplug ethernet, disable Wi-Fi. Do not shut down infected machines. Photograph ransom notes. Use TeraDef's free Cyber First Aid tool above. This works for NGOs, hospitals, churches, schools — any organization with no dedicated security team.
Is there really free cybersecurity help for NGOs, hospitals and nonprofits?+
Yes. TeraDef is completely free — no account, no credit card, no hidden costs. It will always be free. We provide the same incident response guidance that enterprise organizations pay thousands for — free cybersecurity for nonprofits, hospitals, churches, and small businesses worldwide.
Our hospital was hit by ransomware. What do we do right now?+
Do NOT pay the ransom. Do NOT restart. Disconnect from the network immediately. Check backups. Use TeraDef's Ransomware response above — it gives step-by-step hospital ransomware help tailored to healthcare organizations. Also visit nomoreransom.org for free decryptors.
Someone in our organization clicked a phishing email. What are the recovery steps?+
Change the affected account password immediately from a different device. Enable 2FA. Check email forwarding rules for unauthorized rules. Alert your team not to click links from the compromised account. Use TeraDef's Cyber First Aid for detailed phishing attack recovery steps.
How does the email breach check work?+
We check your email against 14 billion+ leaked credentials from real data breaches. Your email is never stored, logged, or shared. It's a live, one-time check. If your email appears in a breach, change that password immediately and enable 2FA.
Is there help for organizations in Africa, Asia and Latin America?+
Yes. TeraDef is built specifically for the Global South. Available in 6 languages with country-specific guides for Nigeria, India, South Africa, Brazil, Indonesia, Philippines, and more. Free, no account required, works in any country.
Does TeraDef store my data?+
No. TeraDef does not store, log, or retain anything you type. Your information goes directly to the AI — nothing is saved on our end.
Our church was hacked. Can TeraDef help?+
Absolutely. Churches, mosques, temples, and faith organizations are increasingly targeted because they rarely have IT security. TeraDef provides the same cybersecurity help — use Cyber First Aid above, describe what happened, and get step-by-step guidance free.
Country Guides Free · In your language · No account
10 countries · More coming weekly
Canada flag
Canada
Interac e-Transfer Scam?
Got scammed via fake e-Transfer? Step-by-step recovery, report to CAFC.
Free guide →
 Indonesia flag
Indonesia — Bahasa
Akun Diretas / WhatsApp Disadap?
Panduan gratis memulihkan akun Instagram, WhatsApp, Facebook yang diretas.
Panduan gratis →
 Philippines flag
Philippines
GCash Scam or Hacked Account?
Free recovery guide for GCash fraud, report to BSP and PNP-ACG Philippines.
Free guide →
 South Africa flag
South Africa
Report Cybercrime in South Africa
SAPS cyber unit, SABRIC fraud line, SIM swap & WhatsApp OTP hijacking guide.
Free guide →
 Brazil flag
Brasil — Português
WhatsApp Clonado ou Invadido?
Como saber se seu WhatsApp foi clonado e como recuperar sua conta. Grátis.
Guia grátis →
 India flag
India
Cyber Crime Helpline India
Call 1930. Report at cybercrime.gov.in. UPI fraud, KYC scams, WhatsApp hacks.
Free guide →
 United States flag
United States
"Your Phone Has Been Hacked" Pop-Up?
It's a scam. Here's the truth — and exactly how to close it safely.
Free guide →
 Nigeria flag
Nigeria
Report Cybercrime in Nigeria
EFCC, NITDA, ngCERT contacts. BEC, romance scams, SIM swap guide.
Free guide →
 Nepal flag
Nepal
eSewa Scam — Recovery Guide
Saldo dicuri? OTP scam? Step-by-step recovery, report to Nepal Police Cyber Bureau.
Free guide →
 Indonesia flag
Indonesia
Penipuan OVO — Panduan Pemulihan
Saldo OVO dicuri? Panduan gratis memulihkan akun dan melaporkan penipuan.
Panduan gratis →
🌍
More coming
Kenya · Pakistan
Mexico · Bangladesh

Free cybersecurity for small organizations — no IT team required

TeraDef provides free cyber first aid for hospitals, NGOs, churches, schools, and small businesses that have been hacked, hit by ransomware, or targeted by phishing. Whether you're a nonprofit facing a ransomware attack, a hospital dealing with a data breach, or a small business hacked with no IT team — TeraDef gives you the same incident response guidance that enterprise organizations pay thousands for.

Our tools cover nonprofit ransomware attack response, charity organization data breach response, phishing attack recovery steps, hospital cyber attack guidance, and free cybersecurity tools for nonprofits. Available 24/7 in English, Spanish, French, Arabic, Portuguese, and Hindi — with dedicated country guides for Nigeria, India, South Africa, Brazil, Indonesia, Philippines, Canada, and the United States.

If your email was hacked and you don't know what to do, if your organization was hit by ransomware and you have no security team, or if you're a church, clinic, or NGO that needs cybersecurity help — TeraDef is here. Free, forever, no account needed.

Tell us what didn't work

Anonymous. Private. We read every submission.

Completely anonymous. We never ask for your name or email.

Received ✓

Thank you. We read every message and use them to make TeraDef better.

⚡ Get Free Emergency Help