# HELP! I'VE BEEN HACKED!?
## Remove Threat
Use the **Server Owner/Admin** account to remove the compromised user or bot from the Server.
{% content-ref url="../fundamentals/owner-and-admin-perms" %}
[owner-and-admin-perms](https://dontfeedthewolf2019s-organizatio.gitbook.io/securing-discords-for-web3/fundamentals/owner-and-admin-perms)
{% endcontent-ref %}
**If an Admin was compromised**... The Server is Compromised. Remove the threat & **lockdown the server** (automatic with WICK or similar bot) / manual process:
### LockDown Server
* [ ] Remove **Administrator roles/permissions** from all users & bots
* [ ] Set all **Categories/Channel** to private
*(save for a single read-only channel, with single text-only alert post)*
* [ ] Review **Roles/Permissions** on users & bots to ensure server is locked down
* [ ] Have compromised Admin change their password.
* [ ] Have all staff setup new unmarked email addresses and change their Discord emails.
* [ ] Change passwords once again, ensure password contains letters (combination of lower & uppercase), numbers, and at least one symbol (!@#$%^&\*)
* [ ] Consider reviewing this document before restoring channels and permissions.
**If the Server Owner account is compromised...** the Server is lost. Attempt to change the password, but if ownership has been passed to a new account, then recovery is near impossible.
{% content-ref url="../fundamentals/role-hierarchy" %}
[role-hierarchy](https://dontfeedthewolf2019s-organizatio.gitbook.io/securing-discords-for-web3/fundamentals/role-hierarchy)
{% endcontent-ref %}
**Discords are COMPROMISED, not hacked.** Compromises can be avoided. Damage for all other unavoidable attack types can be mitigated. Study the fundamentals to prevent future attacks.
{% content-ref url="../fundamentals/security-audit-checklist" %}
[security-audit-checklist](https://dontfeedthewolf2019s-organizatio.gitbook.io/securing-discords-for-web3/fundamentals/security-audit-checklist)
{% endcontent-ref %}