https://help.coinbase.com

https://binance.com/support

https://support.gemini.com

https://support.kraken.com

Depending on how it happened you have multiple options to perform a security audit (most ideally to perform them all), including:
▸ If you are concerned about your device being compromised, think of all the places you may have had your wallet or your seed phrase/private key accessible on, for example, your desktop, laptop, smartphone, significant others computer, etc. then choose to focus on performing an audit on those devices. If you proceed with the following steps we recommend saving a log of what you are removing (if anything was found) as a reference point as to what happened for reports you may file (if you are suspicious of a remote attacker on your device you should disconnect from the Internet before proceeding):

• Run a virus scan, for example with Malwarebytes (https://malwarebytes.com), to see if there is any malware or trojans that may have given an attacker access to your device and data (we recommend purchasing Malwarebytes Premium to receive proactive virus protection moving forward).
• Check your browser extensions to see if there are any to remove that appear suspicious or that you are not using.
• Review your recently installed and startup applications to remove any that appear suspicious or that you are not using.

▸ If you are concerned about your assets (NFTs, tokens, crypto) being compromised, you should immediately revoke approvals you may have given on your wallet to those assets and audit any other approvals you have. You can do this directly in the Wallet Guard Security Dashboard (https://walletguard.app/). Revoking on-chain approvals is NOT the same thing as disconnecting your wallet from a website (this is an action local to your device) which is why revoking approvals cost a minimal amount of gas to confirm on the blockchain.
▸ If you are concerned about your seed phrase being compromised, in any scenario it is best to create a new wallet with a new seed phrase. Keep in mind that creating a new wallet does not mean going to your existing wallet, for example, MetaMask, and clicking "Create wallet" - this creates a new wallet with a new private key under the SAME seed phrase which you may have compromised. Therefore, it is best to install a fresh instance of MetaMask to get a new seed phrase and new private keys for your wallets moving forward.

3. Report the incident

Based on how you were compromised, you should report the account/website/contract/address in question:

• Etherscan (https://info.etherscan.com/report-address/)
• Website domain registrar (you can find out the domain registrar from https://who.is)
• Website hosting provider (you can find out the hosting provider from https://who.is)
• Website DNS provider (you can find out the DNS provider from https://who.is)
• 
  

https://www.ic3.gov/Home/FileComplaint‍

https://www.chainabuse.com/report