PanicStation.org
UK USA
uk Technology & digital loss password works on phone not laptop • password works on one device only • same password rejected elsewhere • login works on one device • cannot sign in on new device • account password suddenly not working • wrong password message but it’s right • app login fails browser works • browser login fails app works • password manager autofill wrong • keyboard layout changed login • caps lock shift key issue • account locked after attempts • multi factor code not arriving • suspicious login blocked • device time wrong sign in fails • saved password outdated • “incorrect password” error • sign in rejected other device

What to do if…
the same password works on one device but is rejected on another for the same account

Short answer

Stop repeated attempts, use the device that still works to secure the account (change password + sign out other sessions), then retry the failing device with “clean” input (manual entry, correct keyboard/layout, cleared saved credentials).

Do not do these things

  • Don’t keep trying variations rapidly — you can trigger a lockout or rate-limiting.
  • Don’t change lots of settings on multiple devices at once (you’ll lose track of what fixed what).
  • Don’t install “password recovery” tools or remote-help apps suggested by strangers or pop-ups.
  • Don’t click sign-in links from emails/texts while you’re stressed; go to the service directly.
  • Don’t share screenshots of one-time codes, recovery codes, or “security check” screens.

What to do now

  1. Pause and reduce lockout risk

    • Stop trying for a few minutes if you’ve had multiple failures.
    • If the site/app mentions a timed lock (e.g., “try again later”), take it literally.

  2. On the device that still works: secure the account first

    • Change the password (even if you’re not sure it’s an attack). Use a new, unique one.
    • Sign out of other sessions/devices (often found under “Security”, “Devices”, or “Where you’re logged in”).
    • Check recent sign-in activity for logins you don’t recognise.
    • Turn on two-factor authentication (2FA/MFA) if it’s available (use an authenticator app or device prompt if offered).

  3. On the failing device: confirm you’re signing into the exact same account

    • Make sure you’re using the same sign-in identifier you use on the working device (email vs username vs phone number).
    • If it’s a work/school account, confirm you’re on the correct organisation sign-in page/app (some have separate “personal” vs “work” routes).

  4. On the failing device: remove common “false wrong password” causes

    • Type it manually once (don’t rely on autofill). If you must copy/paste, paste into a plain notes app first to confirm it’s exactly what you expect (no extra spaces/newlines).
    • Check keyboard input: caps lock, sticky keys, language/keyboard layout (common when switching devices).
    • Delete saved credentials for just that site/app, then retry:
      • Browser: remove the saved password entry for that site and reload.
      • App: log out fully (if possible), then restart the app.
    • Try a private/incognito window or a different browser to bypass cached cookies and extensions.

  5. Rule out device and network “blocks”

    • Update the device date/time to automatic (wrong time can break sign-in and 2FA).
    • Switch networks (Wi-Fi ↔ mobile data) and turn off VPN/proxy temporarily. If a VPN is required by work/school, use the official VPN/network and consider contacting your IT/helpdesk instead of toggling randomly.
    • If it’s an app, update it from the official app store; if it’s a browser login, update the browser.

  6. Use the provider’s official recovery flow if needed

    • If the failing device still won’t accept the password, use “Forgot password” on that device (or from a trusted browser) and follow the provider’s recovery steps.
    • If you suspect your email account is involved (password resets go there), secure the email account first using the same “change password + sign out other sessions + enable 2FA” approach.

  7. If you suspect a scam or compromise

    • If you received a message pushing you to “verify your account” or “unlock it”, treat it as suspicious.
    • In the UK, forward suspicious emails to report@phishing.gov.uk and suspicious texts to 7726 (free) to report them.
    • If you’ve responded to a scam, been hacked, or lost money: report to Report Fraud if you’re in England, Wales, or Northern Ireland; if you’re in Scotland, report via Police Scotland (101).

What can wait

  • You don’t need to decide whether you were “hacked” right now — secure the account and stabilise access first.
  • You don’t need to tidy password managers, rotate every password, or do a full device reset today unless there are strong signs of malware.
  • You don’t need to contact police immediately unless there’s an ongoing threat, a crime in progress, or financial loss.

Important reassurance

This is a common, fixable pattern. Different devices often fail for boring reasons (autofill, keyboard layout, cached sessions, timed lockouts) — and securing the account from the device that still works is the safest way to prevent it getting worse.

Scope note

This is first-steps guidance to stabilise sign-in and reduce risk. If the account controls money, identity, or work access, you may also need provider support or specialist IT/security help after you regain access.

Important note

This is general information, not legal, financial, or professional security advice. If you think you’re in immediate danger or a crime is happening now, call 999. For non-emergencies, call 101.

Additional Resources
Support us