Firstly, protect SQL logins for the specific Databases that have read/write permissions applied to them and then change the password. If they have access to the DB via Windows Authentication, make sure that they are in a data reader role. You can use roles to manage what the users can do in SQL. I hope this helps you.
Thanks & Regards