PanicStation.org
UK USA
uk Technology & digital loss contacts list filled with strangers • unknown contacts suddenly appearing • random names in contacts • phone contacts duplicated and scrambled • icloud contacts look wrong • google contacts suddenly changed • outlook contacts synced weird • account sync gone wrong • hacked account warning sign • suspicious contacts after app install • contacts imported without permission • address book suddenly changed • contacts list corrupted • someone added contacts to my phone • new contacts i don’t recognise • contact sync loop • phone compromised concern • contacts hijacked • unexpected entries in address book

What to do if…
your contacts list suddenly fills with unknown entries or random names

Short answer

Pause contacts syncing and secure the account that controls your contacts (usually your Apple Account/iCloud, Google, Microsoft, or work account) before you delete anything.

Do not do these things

  • Don’t start mass-deleting contacts yet — you can wipe your real contacts and make recovery harder.
  • Don’t message or call the unknown entries “to see who they are” — that can confirm your number is active.
  • Don’t install random “cleaner” or “contacts fix” apps — some are data-harvesting.
  • Don’t share one-time codes (texts, authenticator prompts) with anyone, even if they claim to be “support”.

What to do now

  1. Stop the spread for a moment (sync pause).

    • Prefer turning off Contacts syncing for the main account (iCloud/Google/Microsoft) rather than full Airplane Mode if you think you’ll need to receive sign-in codes or calls.

  2. Make a quick backup/export of what you currently have (before changes).

    • Export contacts from the main account (for example a vCard/CSV export), if you can.
    • If you can’t export, take a few screenshots showing examples of the random entries and the time you noticed.

  3. Check whether an account takeover is likely.

    • Look for: password reset emails you didn’t request, “new sign-in” alerts, unknown devices logged in, new forwarding/recovery email/phone you didn’t add, or new apps with access.
    • If any of these are present, treat it as a compromised account.

  4. Secure the account that syncs contacts (do this even if you’re not sure).

    • Change the password for that account from a trusted device (ideally a computer you control).
    • Turn on two-step verification (or confirm it’s on).
    • Review and remove unknown devices connected to the account.
    • Review and revoke third-party app access you don’t recognise (apps that can read/manage contacts).

  5. Check your phone for management profiles/work accounts that might be injecting contacts.

    • If this is a work phone or you’ve ever installed a workplace profile (MDM), school account, or “device management” profile, it may be pulling a shared directory into Contacts.
    • If you’re not sure, pause and contact your IT/helpdesk before removing profiles you need for work access.

  6. Identify the source by comparing devices.

    • Check another device signed into the same account (tablet/laptop/web contacts page).
    • If the random contacts appear there too, it’s likely account/sync-side (not just the phone).

  7. Recover safely (after you’ve secured and backed up).

    • If you use iCloud, use iCloud.com Data Recovery → Restore Contacts to roll back to an earlier archived version (where available).
    • If you use Google Contacts, use Undo changes (available for changes within the past 30 days).
    • Then delete any remaining unknown entries from the web contacts view so you’re cleaning the “source of truth,” not just one device.

  8. If you lost money, were scammed, or suspect criminal access, report it.

    • In England/Wales/Northern Ireland, report to Report Fraud (this replaced Action Fraud as the public reporting route).
    • In Scotland, report via Police Scotland (101 for non-emergency; 999 in an emergency).

What can wait

  • You do not need to decide today whether to factory reset your phone.
  • You do not need to contact every person in your address book.
  • You do not need to “clean” everything perfectly right now — the priority is stopping syncing damage and locking the account.

Important reassurance

This can be caused by a sync/import mishap (for example after adding an email/work account or granting a new app access) and it can also be an early sign of account compromise. Securing the account first is the safest move and helps prevent irreversible loss of your real contacts.

Scope note

These are first steps to stabilise the situation and prevent further loss or exposure. If you confirm account compromise, you may need additional steps (email security, banking checks, identity protection), but those can come after the contact changes stop.

Important note

This guide is general information, not professional IT, legal, or security advice. If you’re on a managed work device, your employer’s policies and IT tools may change what you can safely remove and how recovery works.

Additional Resources
Support us