Secure CyberCity against a rising tide of cyberattacks
What to Do If Your Facebook Account is Hacked: A Step-by-Step Guide
Social media platforms like Facebook have become an integral part of our lives. However, this interconnectedness also makes us susceptible to cyber threats. If your Facebook account is hacked, it can be more than just an inconvenience.
Hackers can gain unauthorized access to your profile, potentially allowing them to steal your information, impersonate you, spread malware, or defraud your contacts.
Account hacking is a major concern, especially on Facebook where users share a significant amount of personal data.
If you suspect your Facebook account has been compromised, immediate action is crucial. This guide will help you understand the signs of a hacked account and the steps to take to recover control, protect your information, and prevent future attacks.
Your Facebook Account is Hacked if You Notice the Following
It’s essential to be aware of the telltale signs that your Facebook account may be hacked. Here are the most common red flags:
#1.Unfamiliar activity
If someone else posts on your timeline, sends messages from your inbox, or sends friend requests on your behalf, your account may have been compromised.
To review your Facebook account activities, go to your Profile Image-> Settings & Privacy
Click on Settings & Privacy to reveal submenus such as Security, Language, Privacy Check, Privacy Center, Activity Log, and Feed.
Select Activity Log. This action opens an information-rich page showing your Facebook account activity.
You’ll find details such as posts you created, videos you searched for, likes, comments, groups, and many more.
Simply click on each item and review your activity. Typically, you’ll find something like this:
Jb likes Pixy’s reel
Or
Jb watched a video
Now, if you find a suspicious activity in your log, then it’s time for action! At this stage, the probability that your Facebook account is hacked is high.
#2. Changed account information
Hackers often make changes to your profile to maintain control. Keep an eye out for alterations to your email address, password, name, birthdate, or other personal information.
First dash to your ‘About’ page. How? Simply Go to Settings & Privacy -> Settings
Under ‘Audience and Visibility’, click Profile details.
When you click on Profile details, a page containing information about your account displays. Under ‘About’ tab, you find your profile overview and other details such as work & education, places lived, contact and basic information, etc.
Carefully review these details.
A more meaningful way of detecting profile changes is using the activity log. To review your account information, Go to Settings & Privacy -> Activity Log -> Personal Information.
Clicking on personal information, opens: Profile Information and Saved Information. Our interest, of course, is on Profile Information.
Now, click on Personal Information to display items such as About, Relationships, Your Music, Your Hobbies, etc.
To reveal activity for each item, just click on it.
Clicking on ‘About’ reveals the date and the changes you made to your profile. For example;
May 10, 2024
JB updated his profile picture.
If you click on another item, let’s say ‘Your music’, then this is what you may find;
In case you notice unwarranted changes in your profile information, then it’s an indicator your Facebook account is compromised.
#3. Suspicious logins
Facebook allows you to check recent login activity. Go to Settings & Privacy -> Activity Log -> Activity Login Information.
Here, you’ll find technical information and login activity relating to your Facebook account. In the submenu, you can see: Logins and Logouts, Where you’re logged in, and Recognized devices.
Click on each item, one at a time, and review for any suspicious activity.
What you’ll find under each item:
○ Logins and Logouts
Here, you’ll find details relating to your logins and logouts.
○Where you’re logged in
Typically, you’ll see something like the date you logged in, your name, date created, date updated & time, device type, IP address, and type of browser. Please note that the location is just approximate, but it should be familiar to you.
Because of the sensitivity of information contained on this page, I won’t share screenshots.
○ Recognized devices
Essentially, you’ll find the date the device was saved and details of the device. This is an example extracted from my page (but of course names changed):
JB saved a recognized device, Chrome for Windows 10.
Unfamiliar devices or locations might indicate unauthorized access.
#4. Warnings from friends
If your friends receive strange messages or links from your account, or notice unusual posts that you didn’t make, take this as a serious sign that your account might be in someone else’s hands.
Normally, among the first victims when your Facebook account is hacked, are your friends and followers. When they raise alarm about unusual activity on your account, please take immediate action.
Important Note: Even if you only notice one of these signs, don’t dismiss it. It’s better to be cautious and take action to secure your account.
7 Security Risks That Come With Using Facebook
Facebook Security
Take Immediate Action
If you suspect your Facebook account is hacked, there’s no time to waste. Follow these crucial steps to regain control:
#1. Change your password
Immediately create a new, strong, and unique password. Don’t reuse passwords from other accounts. Consider using a password manager to help you generate and store complex passwords securely.
To change your password, follow these steps:
Go to you Profile Photo -> Settings & Privacy ->Settings
Locate Accounts Center (on the left if you’re using a desktop computer). Click on Password & Security. You may go to ‘See more in accounts center’ if you don’t see what you’re looking for.
Typically, the Account Center enables you to manage your connected experiences and account settings across Meta technologies like Facebook, Instagram and Meta Horizon.
On the left tab, under Account Settings, click Password Security. A pop-up window appears, showing two sections: Login & Recovery and Security Checks.
Our interest at this stage is to change the password, so go to Change Password under Login & Recovery. A new pop-up window asks you to choose the account you want to make changes.
Upon choosing an account, another pop-up appears that asks you to change the password. You need to enter the old password before you enter the new password.
You may use our inhouse Password Generator to create a strong password.
Make sure the password is long and strong-typically consisting of a mixed case letters, number, special character, and also long enough (I recommend at least 12 characters).
Learn How to Manage Your Passwords Effectively
Password Security
#2. Log out of all devices
While still on Accounts Center page, go to ‘Where you’re logged in’ under Security Checks. Select the account to log out. Select All devices logged in and proceed to delete. To be safe, also delete all logged in devices in all other Meta accounts you’re using.
This actions effectively kicks the hacker out of your account.
#3. Contact Facebook Support
Report the hacking incident to Facebook by visiting their dedicated help page: https://www.facebook.com/hacked. Follow their instructions to recover your account and get additional assistance.
Remember: The faster you act, the better chance you have of minimizing the damage caused by the hacker.
Notify Your Network
Once the immediate threat is contained, it’s vital to alert your network about the compromise for several reasons:
○ Alert your friends
Send a message to your Facebook friends or use other communication channels (email, text, etc.) to let them know your account was hacked. Advise them to disregard any recent suspicious messages, links, or friend requests that appear to have come from you.
Example 1:
Important: My Facebook was hacked!
Hey everyone, please ignore any strange messages/links from my Facebook account recently. It was hacked. I’ve fixed it, but stay cautious!
○ Potential phishing attempts
If there were unusual posts or messages sent out from your account while it was compromised, specifically warn the people who interacted with them. Apologize for any inconvenience caused and emphasize that those messages didn’t originate from you.
Example 1:
Sorry about that – my Facebook was hacked
Guys, my Facebook was hacked. Please delete any weird messages or requests from me in the past [add timeframe if helpful]. Thanks for understanding!
Example 2:
My Facebook was briefly hacked. I’m back in control 👍 Please be extra careful with any recent messages that looked like they came from me – they weren’t!
This helps prevent your friends from falling victim to potential phishing attacks launched through your account.
How to Communicate
• Direct messaging: If possible, directly message those you think may have been targeted.
• General post: If the situation is widespread, consider a new post on your timeline once you’ve regained control. Briefly explain that your account was hacked and that recent unusual activity was not you.
• Other social media: If appropriate, post a notice on your other social media accounts to reach a broader audience.
Taking these steps is crucial because you can help:
• Protect your friends from potential harm
• Disrupt any ongoing scams the hacker might be running through your compromised account.
Damage Control & Recovery
After taking immediate action to secure your account, it’s time to assess the situation and undo any damage caused by the hacker:
#1. Check connected apps
Review the apps that have permissions to access your Facebook data. Go to Settings & Privacy -> Settings -> Apps and Websites.
Remove any apps that you don’t recognize or no longer use, as these could be potential avenues for future attacks.
#2. Review recent posts/activity
Thoroughly examine your recent timeline and activity logs. Delete any posts or comments made by the hacker and double-check your privacy settings.
Ensure they haven’t been modified to expose more information than you’re comfortable with.
#3. Report financial fraud
If you have credit cards or other financial information linked to your Facebook account, or if there’s evidence of fraudulent transactions, contact your bank or payment providers immediately. They can monitor for suspicious activity and assist you in disputing unauthorized charges.
#4. Check messages
Review your sent messages for any fraudulent or malicious communications sent out in your name.
#5. Change other passwords
If you reuse the compromised password on other websites or services, change those passwords immediately to prevent further security breaches.
The extent of damage control will vary depending on how much access the hacker had and how long your account was compromised. Be diligent and focus on regaining control of your data and limiting potential consequences.
Strengthen Your Security
The experience of having your account hacked highlights the importance of proactive security measures. Take this as an opportunity to reinforce your defenses:
#1. Two-factor authentication (2FA)
This is arguably the most important step you can take. Enable 2FA in your Facebook settings. Go to Settings & Privacy -> Settings ->Password & Security (Under Accounts Center) ->Two-factor authentication (Under Login & Recovery).
You have an option of using email, phone number (SMS), or authenticator app for setting 2FA.
This adds an extra layer of security, requiring you to enter a code sent to your phone or generated by an authenticator app, in addition to your password, when logging in from a new device.
#2. Review privacy settings
Visit the Privacy section of your Facebook settings to customize who can see your posts, friend lists, and personal information.
Take some time to ensure that you’re only sharing information with the intended audience.
#3. Be wary of links and scams
Remain suspicious of unexpected or strange-looking links, even if they appear to come from friends. Learn to recognize the signs of phishing scams (urgent messages, requests for personal info, too-good-to-be-true offers).
Be very cautious with what you click on and what information you share.
#4. Regular password updates
Change your Facebook password regularly along with passwords for other important online accounts.
#5. Use a reputable antivirus
Install antivirus and antimalware software on your computer and phone, and keep it updated.
What to Do if Your Facebook is Hacked in Summary
Having your Facebook account hacked can be a stressful and concerning experience. However, by taking swift action and following the steps outlined in this guide, you can regain control and minimize the potential damage. Remember, vigilance is the cornerstone of online safety.
Regularly change your passwords, practice healthy cyber hygiene habits, and stay informed about the latest scams and security threats.
Take advantage of Facebook’s built-in security features like two-factor authentication and be mindful of the information you share online.
By being proactive, you significantly decrease the chances of future compromises and can enjoy the benefits of social media with greater peace of mind.
ALSO READ:
Why Are Dictionary Attacks Successful?
How Can An Adversary Use Information Available in Public Records to Target You?
What is a computer virus and how do you protect your computer from viruses?