Getting hacked on Facebook can be a scary and frustrating experience. Your private information is exposed, your profile is compromised, and you could even be locked out of your account. Knowing the first steps to take when this happens is crucial for securing your account and limiting the damage.
Change Your Password
The very first thing you should do if your Facebook account gets hacked is change your password. This is essential for regaining control of your account and preventing the hacker from accessing it further.
Do not just change your Facebook password – make sure to change the passwords on any other accounts that used the same or similar password. The hacker may have also gained access to your email, Amazon, bank accounts etc if you reuse passwords.
Create a brand new, complex password that would be difficult for a hacker to crack. Use a mix of upper and lower case letters, numbers and symbols. Avoid using personal information or common words. Enable two-factor authentication as well for extra security.
Log Out All Sessions
After changing your password, you need to log out of all active Facebook sessions. This will kick the hacker out of your account and reset all access.
On the Facebook website, go to Settings > Security and Login. Under “Where You’re Logged In”, click Log Out of All Sessions. This will log out all devices, browsers and apps connected to your account.
You can also log out of specific sessions by clicking the three dots next to each one and selecting Log Out. Be sure to log out all unfamiliar sessions to fully secure your account.
Check Login Notifications
Facebook has a login notification feature that tells you when and where your account was accessed. Checking these notifications can give you valuable information about the hack.
Go to Settings > Security and Login > Where You’re Logged In. Review the list of Recent Logins to see any unfamiliar locations, browser/devices and IP addresses.
Make note of any logins from places you don’t recognize. This will give you clues about the hacker’s location and what devices they may be using to access your account.
Remove Suspicious Apps
Often hackers will connect malicious third party apps to your Facebook account in order to access more data. It’s important to remove any apps you don’t remember adding or that seem suspicious.
Go to Settings > Apps and Websites. Review the list of Active apps and remove any unfamiliar or suspicious ones by clicking Remove. This cuts off an app’s access to your account.
Also check under Logged in with Facebook and remove any questionable apps authorized to use your Facebook login. Revoke their access to lock them out of your account.
Check Messages for Suspicious Links
Hackers will sometimes send messages with malicious links from a compromised Facebook account. Check your messages for any suspicious links that you don’t remember clicking on.
These could be links randomly sent to your friends with odd URLs or sites you don’t recognize. They may try to entice you to click by offering free gifts, prizes or other giveaways.
Do not open or click on any suspicious messages or links. Delete them immediately. This could install malware or viruses on your device that steal your data.
Secure Your Email
Since your Facebook account is connected to your email, it’s crucial to lock down your email as well after a hack.
If you use the same password for both Facebook and email, change your email password immediately. Enable two-factor authentication for extra security.
Check your email settings and recovery options. Remove any unknown phone numbers, addresses or email accounts that the hacker may have added to recover your account.
Look for any recent emails from Facebook about password or email changes. Reverse any unauthorized changes.
Enable Login Approvals
Strengthen your Facebook security by turning on login approvals. This requires you to enter a special security code each time someone tries accessing your account from an unrecognized device.
Go to Settings > Security and Login > Use Two-Factor Authentication. Click Edit and enable the option to “Require a Security Code” to turn on login approvals.
This will send a login code via text that must be entered when accessing your account. Hackers won’t have this code, blocking them out of your account.
Check Filtering Settings
Hackers will sometimes filter your News Feed and messages to hide their malicious activity. Check to make sure your filtering settings haven’t been tampered with.
Go to Settings > News Feed Preferences > Filters. Make sure you recognize any custom filters and that important people like family members are not blocked.
Also go to Settings > Messaging Preferences > Block Settings. Remove any contacts you don’t remember blocking yourself to open up communications.
Reset Advert Preferences
Your Facebook ad preferences may get modified by hackers to serve up shady ads or clickbait. Reset your preferences to undo any changes.
Go to Settings > Ads > Ad Preferences > Ad Settings. Click “Reset All Preferences” to restore your original interests, demographics and categories.
Check Authorized Followers
Hackers can sometimes follow Facebook pages or groups using your account without approval. Check your authorized followers to remove any you don’t know.
Go to Settings > Followers. For any followers you don’t recognize, click the three dots next to their name and select Unfollow. This rescinds their access to view your profile and posts.
Review Privacy Settings
Take back control of your privacy settings that may have gotten changed by hackers. Go to Settings > Privacy and make sure everything is set up the way you want.
Look closely at who can see your posts, friends list, photos and other profile info. Tighten settings if they are too broad or public. Enable options like “Only Me” where applicable.
Change Your Facebook Email
If your email associated with Facebook got compromised along with your password, it’s important to change it. This prevents hackers from resetting your password.
Go to Settings > General Account Settings. Click “Change Email” and enter a new, secure email address not known by the hacker. Verify it to connect it to your account.
Scan Devices for Malware
Hackers may have installed spyware, keyloggers or other malware on devices used to access Facebook. Scan your computers, phones and tablets to remove this.
On Windows, use built-in Microsoft Defender Antivirus. On Macs, use Malwarebytes or other antimalware tools to scan for threats. For mobile, check Google Play Protect and app permissions.
Enable Login Notifications
Going forward, make sure you have login notifications enabled so you are aware of any new logins to your account. Get alerts about logins on unfamiliar devices.
Go to Settings > Security and Login. Under “Use Two-Factor Authentication”, enable login notifications. This emails you whenever your account is accessed from a new device.
Monitor Friend Requests
Keep close watch on new friend requests you receive for a while after getting hacked. Hackers may add their own accounts as friends to maintain access.
Check notifications frequently to review any pending friend requests. Do not accept requests from people you do not know personally. Decline and report any suspicious requests.
Conclusion
Getting your Facebook account hacked can be a stressful and invasive experience. Take immediate steps to change your password, secure your email, log out of sessions and enable two-factor authentication. Remove any suspicious apps, links or followers associated with the hack. Scan devices, reset preferences and monitor login notifications. Stay vigilant about new friend requests. Take back control of your account security and online presence.