Technology in terms you understand. Sign up for the Confident Computing newsletter for weekly solutions to make your life easier. Click here and get The Ask Leo! Guide to Staying Safe on the Internet — FREE Edition as my thank you for subscribing!

Someone Has My IP Address. Should I Be Scared?

What your IP address does and does not reveal.

If someone threatens you because they know your IP address, it's an empty threat.
You Are Here!
(Image: canva.com)
Question:

  • My IP address was exposed after I got a virus on my computer. Should I be scared?
  • Help please, someone got my IP country and state and my village. I am just a kid. Please help — he even got my ISP. please I am really scared.
  • Hey! Some guy has my IP. Is it possible that he does a cyber crime and uses my IP address and gets me arrested?

No.

No, you should not be scared. No, no one is going to track you down to your home. No, no one is going to use your IP address for some kind of cybercrime.

As you can tell, this is a question I get often. There’s lots of confusion over what people can and cannot find out from your IP address.

It gets worse when you search for an answer to this question online. Search results are full of fearmongers declaring that your privacy is over once someone has your IP address — unless, of course, you purchase their product. Sigh.

Become a Patron of Ask Leo! and go ad-free!

TL;DR:

Finding you by your IP

Locating you by your IP address is possible, but it requires skills, tools, and access the average user doesn’t have. Typically, law enforcement needs to be involved. You hand over your IP address with all your online activity; it’s how the internet works. Someone knowing your IP address isn’t anything special or terribly risky. If someone threatens you because they know it, it’s nothing more than bullying.

The big fat caveat

I have a hard time convincing people not to worry, and here’s why.

Of course your IP address can be used to track you down. Anything is possible…

…if you have the resources and the access to do it, that is. Law enforcement can find the location of an IP address, for example, by forcing ISPs and other internet providers to give them information not available to the general public.

Theoretically, hackers could infiltrate your ISP and get private information about your IP address.

Unless you are an exceptionally high-value target, have run afoul of the law in a serious way, or live in a seriously repressive regime, no one is going to make the significant effort to track you down by your IP address.

It takes access and skills that are not generally available to even the scariest of hackers.

It’s just not going to happen to you.

Here’s another reason why you shouldn’t worry.

I know your IP address

Here’s the IP address I have for you: 3.87.166.241.

In fact, every website you visit, every online service you use, and everything and anything to which your computer connects directly knows your IP address.

Not only is it not a big deal, it’s how the internet works. It’s how those sites and services know how to respond to you. It’s how the Ask Leo! server knew to send you the information for the very page you’re reading right now.

You’re “exposing” your IP address all the time.

We all are.

But, but, but…

You’ll find plenty of articles on the internet claiming you’re putting yourself at significant risk by exposing your IP address.

For most of us, that’s pure bullsh*t.

They’re trying to sell you something. Usually, they’re trying to sell you a subscription to a VPN service to “hide” your IP address.

You can hide it if you like. It’ll slow down your online experience and lighten your wallet. It won’t really make you significantly safer1 — at least not from the “horrors” of exposing your IP address. You know, 3.87.166.241.

“But I’m special — people really are after me.”

99% of the people making this claim are wrong.

We all fear what we don’t understand, and people don’t understand the internet or how it works. It’s easy to get sucked into concerns about issues that don’t exist — in part because there are so many other issues that do.2

On top of that, many people love to turn this lack of knowledge to their own purposes. The most common I see are kids trying to scare other kids by claiming that by knowing their IP address they can now hack their computer, infiltrate their home, or make it look like criminal activities are originating from it.

No. Just no. It’s nothing more than taunting and bullying.

Now, about that 1% . . .

Of course it’s possible; it’s just not likely

Let’s say you’re part of that 1% who are correct about being tracked at a personal level. What’s the risk?

The only legitimate risk is that, in theory, someone could mount a denial-of-service (DOS) attack against your IP address. This pummels your IP address with so much traffic that you can’t get out. Essentially, you get knocked offline.

That’s it. You get knocked offline.

You’re not hacked or compromised. You’re inconvenienced. Your ISP would take steps quickly to make it go away, and you’d be back in business.

Of course, if you’ve done something to warrant law enforcement or government interest, they can get the information about where you are from your ISP. But that’s not available to your random internet user or bully.

Disclosing your location

There’s one more aspect of all this that is important to realize.

Without even exposing your IP address, you might well be telling websites and services exactly where you are.

Visit What’s My IP Address? It’s one of several sites that will tell you your IP address (which is 3.87.166.241), and also tell you where you are — to a point. In my case, it says Seattle. OK, kind of, but in reality, I’m nearly 15 miles from the city. It’s not uncommon for this type of IP-based “geolocation”, as it’s called, to be miles off — sometimes hundreds of miles off.3

Geo-locating myself, based on IP address
Geo-locating myself based on IP address. Click for larger image. (Screenshot: askleo.com)

Click on the link to “Update My IP Location”. You’ll be presented with a list of pros and cons, which I appreciate, and the opportunity to skip the next step.

Click Proceed, and your browser will present you with this.

Browser asking for location permission.
Browser asking for location permission. (Screenshot: askleo.com)

Here’s the deal: this has little to nothing to do with your IP address. Your browser (and your system in general) often knows your specific location with a high degree of accuracy. I clicked “Allow” in one browser, and sure enough — the exact location of my home was displayed…

…because I let my browser share that information. I clicked Allow.

Even if you use a VPN to “hide” your IP address, all bets are off when you explicitly tell someone where you are — and that’s exactly what “Allow” does when a website wants to know your location.

Naturally, VPN and other vendors use this amazing location ability to sell you solutions that aren’t needed or don’t fix what’s really at play.

Do this

Most people don’t need to do anything more than follow common internet safety rules to stay safe. No extra tools are needed.

If someone knows your IP address, it doesn’t expose you to any significant extra risk. Maybe click “Block” when a website wants to know your location (unless, of course, you want it to — like your delivery app or Google Maps).

If you really are that special someone who needs to stay extra secure because people and/or law enforcement are after you — well, this article isn’t for you. Consider using a good (not free) VPN, perhaps TOR, a dedicated machine, someone else’s internet connection, and so on. The list of what you need to do is longer than I can go into.

Besides, if you’re reading this article, I’m still not convinced you need it.

Subscribe to Confident Computing! Less frustration and more confidence, solutions, answers, and tips in your inbox every week.

Podcast audio

Play

Footnotes & References

1: VPNs can add value, but using them as a means to “hide” your IP address is not one of the big ones.

2: I worked hard to avoid the terms “paranoid” and “conspiracy theory”. It’s too easy to bucket people into those categories when in fact the situation is significantly more nuanced.

3: Yes, I’ve blurred my IP address in the image below. I debated this, but there are enough sketchy people who’d love to make an example of me to make some kind of point and mount a DOS attack. Since I rely on it for my business, I’m electing not to poke the bear. Seriously, though, a DOS attack would be my only concern.

50 comments on “Someone Has My IP Address. Should I Be Scared?”

  1. Many people use a VPN to hide their IP address so they can view country restricted content. I live in Europe and wanted to watch a Netflix video that’s not offered here (I pay for Netflix). I’ve done this a few times with a VPN. A while ago, I tried this and Netflix blocked it with a notification that they don’t allow viewing their videos using a VPN. One friend said the best VPNs for that are small ones who don’t send as much traffic to Netflix and change their IP addresses often enough to escape detection.

    Reply
  2. I think you accidentally hardcoded the IP address in the article to 35.81.190.53 (when I presume you wanted to display the IP of the site visitor). That’s not my IP address, but it is the address of ec23.pugetsoundsoftware.com

    Reply
      • Similar thing with my location, (somewhere in Tasmania), but practically all sites think my location is on mainland Australia with just the odd one or two getting closer with the state capital, Hobart.
        I’ve long guessed that this is to do with my ISP being on the mainland and the fact that all ‘land-based’ internet traffic from Tassie, regardless of peoples ISP’s, is bundled together and routed through one of two undersea fibre cables to Melbourne before distribution out into the WWW.

        Reply
  3. “Here’s the IP address I have for you: 35.81.190.53.”

    Ummm, no. whatismyipaddress tells me something completely different and the geolocation is in the right part of the province. 35.81.190.53 is an Amazon static IP address for you: pugetsoundsoftware.

    Reply
    • The IP address you saw was Leo’s IP address. I don’t know how that happened to you. The address that showed up for me was a nearby location (if you consider 500 KM away nearby. ;-) Right now, I see your IP number as 15.223.xx.xxx. Although an IP number doesn’t identify you, I’ll censor out a portion out of respect for your privacy.

      Reply
  4. I only use a VPN because the UK has become so ‘Hate-Crime’ conscious that the police have dozens of coppers, who should be out patrolling the streets, are instead sat at computers all day trying to find people who have the slightest whiff of being right-wing and ‘white privileged’.

    I may be classed as either or both of them, so I’m not going to make the job easier for them!

    Reply
  5. I’m actually amazed at how we all get connected with IP addresses. 255^4 (255.255.255.255) is about 4.2 billion possible IP addresses and I understand that some are specifically reserved, so not available. 4.2 billion is roughly half the population of the earth and many people have multiple devices that all need IP addresses. How we all get connected is a mystery to me.

    Reply
    • Although many people have multiple Internet connected devices, most interact with the Internet through the router’s IP address. The router communicates to the devices behind it via its internal IP address. A few small ranges of IP numbers are reserved for local network use. All local networks use the same range of IP addresses as those numbers stay within the local network and aren’t seen outside of the local network.
      So, for current usage, those 4.2 billion addresses are sufficient, but there is, essentially, no room for more. IP v.6 is designed for future use, making it possible to assign a unique IP address to each device giving approximately 340 trillion trillion trillion possible addresses. That ought to last a few years.

      Reply
    • There are other methods that are used to contend with the depletion of IPv4 addresses. For example, just as your router maps your public (ISP) IP address to your local computers, the ISP has it’s own private IP mapping schemes by which a public IP is mapped to many (millions) of ISP subscribers by means of indicators within the TCP/IP message header fields (look up Network Address Translation). Another method of conserving IP addresses is to do virtual hosting in which one server, with one public IP, hosts several different websites, again distinguished by other data within the message. Another method is what’s called “classless addressing” which uses different encoding within an IP address bits so that an organization is allocated only the number of unique addresses that it needs and the address space is not wasted on unused addresses. There is also a market for buying, selling and leasing IP addresses which minimizes waste of unused IP addresses.

      Reply
  6. Hi Leo

    You are absolutely right. No one can do anything to you with your IP address. Thanks to you for always enlightening us. All the time. Since 2003. With love from India.

    Reply
    • That’s true and it’s one of the reasons you don’t have to be afraid if someone has your IP number. Although, of course, if you are doing something illegal, the police can get a warrant to find out from the ISP who did the illegal activity, and they can find the culprit by checking the IP number against the time the crime was committed and pinpoint which customer’s account was responsible.

      Reply
  7. Leo, I have no idea what IP means – nor VPN for that matter. Can you explain this (and other similar terms) more clearly in future articles. I note that you DO explain that “someone could mount a Denial Of Service (DOS) attack” but nowhere in this article do you mention what IP means.

    Reply
  8. I set my adapter settings to change my ip address daily, which it does. Not only that, the ip address that showed when I went to the website is NOT my ip address. However it did pinpoint where the PC is located pretty accurately, and THAT’S just creepy.

    Reply
  9. Interestingly, as you show in your screenshot, the What’s my IP address website is also trying to play on these (mainly unwarranted) fears by offering to hide your IP address, presumably for money. As Leo says – don’t fall for it.

    Reply
  10. A while back someone made a Ebay purchase using my account, I had chance to talk to the ebay security person and he said that the transaction came from my IP address and would not investagate any further. That is what encourged me to get a VPN account. I know for a fact that my computer was not used.

    Reply
    • The eBay security person would have no way of knowing the order came from your IP address. Who did you really talk to?

      Reply
      • Why do you say that? I’m sure the eBay servers have logs, just like any web server. They should be able to easily tell the IP address from which a transaction occurred, just like I can see the IP address from which you posted this comment.

        Reply
        • I’m referring to the likelihood. A client service person on the phone is not likely to have both of the IP addresses of the people involved in real time, especially since those IP addresses were used at different times. As has been said here, IP addresses change. Of course, the eBay security guy could have done in-depth research digging through eBay records, but that’s not likely. There are other reasons to say “so what if the IP addresses were the same”. One factor is that the IP the eBay guy sees is the ISP’s exchange IP address, not a unique identifier for Walter or the bad guy. If the bad guy is a neighbor and uses the same ISP it’s possible that the IP address used at different time could be the same, especially if the ISP uses NAT (see my other comment here). Another possibility to see the same IP address might be if both people are using the same VPN company. One more possibility is that if the bad guy was able to get into Walter’s eBay account, then he could have easily gotten into Walter’s network, in which case he would use the same IP address. To dismiss the possibility of a hack (if that’s what happened) on the basis of IP address logs is not helpful.

          Reply
          • “A client service person on the phone is not likely to have both of the IP addresses of the people involved in real time, especially since those IP addresses were used at different times.”

            I disagree with this, technically. He may or may not have the IP address in real-time, but he absolutely could have easy access to logs containing the IP addresses involved in posting, buidding, and purchasing items on eBay. In fact I’d be surprised if he didn’t.

          • A customer service person who sees a successful login from the same IP address as the caller would have a hard time reaching any other conclusion than that the purchase was made by the caller or at least someone using the same Internet connection and had access to his login information. This could only have been someone in that person’s household, most likely a child or possibly a visitor or neighbor who got a hold of his eBay login information.

          • Leo and Mark, you should really read this article:
            askleo.com/how_do_i_stop_my_neighbor_from_using_my_ip_address

            Note the sentence: “You and your neighbor could have the same ISP, and both have “DHCP” assigned IP addresses – which can change. In fact, what’s your IP address today could easily be your neighbor’s IP address tomorrow.”

          • This is the more likely scenario:
            “If your neighbor is truly using your IP address, that implies he’s connected to your network.”

            That statement you are quoting is possible but with an extremely low probability of happening. To make it even more unlikely, the purchaser had the questioner’s Amazon login credentials.

  11. A super public-service article that I found very reassuring and will mention to others. It seems that my IP address frequently changes. For example, clicking your link to “What’s my IP address” comes up with a slightly different number than in your article which I have had open in a tab without refreshing for a day or so. So if it changes that often wouldn’t that add an extra layer of protection? Anyway I’m saving this article and thank you for it. I hope you don’t close comments on articles and instead just remove the unacceptable ones (even if they are mine) because many times the comments offer additional helpful insights.

    Reply
  12. I have a privacy concern. Recently I was told that someone probably used my IP to find a way to SEE all the Facebook accounts I have used under my same device / IP. Is that possible? Can someone see my FB accounts under my same device with IP or using the profile link of my FB account? Is there any “hack” or way for them to access such info? I haven’t been hacked my accounts, I changed all my passwords and closed all my Facebook accounts for security purposes. Either way, now I’m so panicked because I fear a stranger can see all my FB accounts that I use under my device, even the new ones I make in the future. Please enlighten me.

    Reply
    • As the article states, there’s no way they can do that. I can see your IP number from when you posted your comment and that is true of every website you visit. If it were possible to hack someone simply knowing their IP address, nearly everyone would have been hacked by now. OK, maybe I’m exaggerating, but that scenario would be entirely possible if it were that easy.

      Reply
  13. Hi Leo,
    Nice article, wish it applied to my case, but it doesn’t. From the time my Mac devices were hacked it’s been an uphill battle. Passwords to my online accounts have been changed and or replaced with someone else’s. transactions have been deleted from my bank account attached to one online marketplace. In a nutshell it’s been hell. In my case, what online measures do I take? Thank you.

    Reply
  14. Hi Leo,
    I recently found out a data breach occurred on a website. The data is from 2019 but it contains my full name, email and ip address from that time.
    Should I be worried that hackers would have my full name?
    Is an ip address from 2019 even useful to them?
    In general am I still safe like your article says? Thanks

    Reply
    • Without a court order, an IP address from today gives no identifying information. An IP address from 4 years ago even less. As for your name, that depends. In most cases, it’s useless to a hacker unless there’s information on that website you don’t wan associated with your name. For example, ̶t̶h̶o̶u̶s̶a̶n̶d̶s̶ hundreds of millions of people have their full name on the Web. Your email address can open you up to more spam, but if you haven’t had a problem with exponentially increased spam, I wouldn’t worry about it until I started getting much more spam.

      Reply
    • Not possible.
      What Can People Tell from My IP Address?

      Every website you visit knows your IP address. Otherwise, they wouldn’t be able to send you any information. It’s where websites, email services, and other Internet services can reach you. When you log off, your IP address is assigned to another in most cases, unless you pay for a static (permanent) IP address. Your computer’s IP address is hidden from the Internet if you have a NAT router, and the Internet can only see the IP address of the router.

      All I can tell from the IP address you used when you posted this is that you were in Sydney, Australia when you posted it. Your real location could be hundreds of kilometers away.

      Reply
  15. Hi mark I’m 17 turning 18 in a few months and went on a 18+ website and got banned (rightfully so) but then there was a pop that said they have my IP address logged and will contact the police if I try accessing the website again cause they would be able to see if I tried to log in again but I didn’t read that part until I got to my 3rd try of logging back in. On their website it also says they work with law enforcement. Do you think the pop up could be to just scare people off and tell them not to do it again cause I personally will never do it again. The website are from America and I’m from the Uk

    Reply
  16. Hi Mark,
    Thank you for your informative article. It helps those with limited knowledge. I live outside the US and I downloaded and used a free VNP duckduckgo for a period of time. It ended a few days ago when I received an automated message from Duckduckgo thanking me to have tried this feature. It is now available at a cost. Recently, I realised it was only available to American users. How come I was able to download it and use it for the last few months without being a US resident ?

    Reply
  17. I no longer use a gateway (combined modem/router) that is approved by my ISP (Xfinity/Comcast). One reason was that Xfinity was able to see the passwords for the gateway itself and my WiFi network passwords. For awhile I figured it was something I would just have to live with, even though the gateway I was using was not provided by Comcast but was one I purchased from a list of approved models to save on equipment rental fees.
    Then one day a letter from Comcast arrived with a warning that one user in the household had been using a BitTorrent client to download files from a website known for pirating movies and if the behavior wasn’t ended, our service would be ended. The letter identified the user by name and the IP address of his computer.
    I had warned him that he could be caught before, but I didn’t expect Comcast to be able to narrow it down to one machine. He did stop using BitTorrent and grumbled quite a bit about it, but oh well, he’d been warned. This was something initiated by Comcast, law enforcement was never involved.
    However, that incident persuaded me to make an equipment change. I now use what Comcast still refers to as a gateway, but is really just a cable modem and a separate router connected to the gateway. Now Comcast cannot see my router or WiFi passwords at all. Nor can they see what equipment is internet connected. Of course Comcast can still monitor the internet traffic going through the gateway to the router, but that is as far as it goes.
    When I log in to Xfinity/Comcast through a web browser, the only equipment Xfinity can see and control is the gateway. I keep getting reminders from Xfinity that I don’t have WiFi capability with the gateway and should upgrade to one of their new and improved units. Thanks but no thanks.
    I don’t do anything unethical or illegal when online, but I still want control of my network to reside in my hands, not a corporation’s.

    Reply
    • The incident with Comcast happened about 10 years ago. It illustrates what capabilities an ISP has. I’m not concerned with non-ISP actors.

      Reply

Leave a reply:

Before commenting please:

  • Read the article.
  • Comment on the article.
  • No personal information.
  • No spam.

Comments violating those rules will be removed. Comments that don't add value will be removed, including off-topic or content-free comments, or comments that look even a little bit like spam. All comments containing links and certain keywords will be moderated before publication.

I want comments to be valuable for everyone, including those who come later and take the time to read.