Steps to Take When Your Facebook is Hacked

SMS Text

“Ummmm, I think you’ve been hacked.”

It’s the phrase that strikes fear into the hearts of social media managers and Facebook junkies alike. Hacking attempts are incredibly common, and as  hackers get more sophisticated, it’s much easier to fall prey to malicious attempts. Luckily, it’s easy to get back to normal with minimal disturbance. Here are some quick, easy steps to recovering your content when your Facebook is hacked.

Change Your Password

You should be in the habit of changing your password often – at least every quarter – but if you discover your Facebook page has been hacked, it’s the first thing you should do to protect yourself and your content. Change your existing password by going to the Home button, then Account Settings, then General; next, click Password and follow the prompts. Some hackers go the extra step to change your password so you are unable to log back in. If this happens to you, use the “Forgot Password” link on the main Facebook login page and follow the prompts. You’ll be asked for a secondary email address and your phone number, so make sure this information is accurate before you deal with a hacker!

Verify Your Identity

Facebook offers the Roadblock tool ( to help you verify your identity if you believe you’ve been hacked. The  tool will ask for your username and password, then require you to answer a series of questions to confirm you’re who you say you are.

Report Your Account

Facebook gives you many ways to report hacking attempts for your profile or page. For privacy breaches, you can email reports directly to or on the Hacked Accounts link. If you believe you’ve been a victim of a phishing attack, fill out the phishing report.

Employ the Two-Step Login Process

Facebook’s recently launched two-step login process creates an extra barrier of security the first time your page is accessed on an unfamiliar device, like a new phone or computer. If you’ve enabled this feature, Facebook sends a text message with a special verification code that you’ll input before you can login from the new device. You can also block unauthorized devices and immediately change your passwords if you get an unfamiliar verification code.

Check Your Sessions

A hacker can get access to your page and wait in the shadows for the right time to jump, spamming your friends and followers with inappropriate messages or link-baiting schemes. How do you stop a hacker before he starts? By checking your active sessions, a little known tool for any Facebook user. A hacker who has logged in will leave traces of his or her presence on this setting, and by logging on, you will be able to end the session and change your password. To discover your active sessions, click the home button (the upper right corner of your page), then Account Settings, then security, then click “edit” under Active Sessions. You’ll see the location, devices and the last accessed session. If it’s suspicious, end it. It’s good practice to occasionally on and end old sessions, especially if you’ve logged on from a different location or device.

Robert Coulter

Robert Coulter

Robert Coulter reviews Authentify’s two factor authentication methods. In his free time, he works with web design and dabbles in coding.
Robert Coulter

Latest posts by Robert Coulter (see all)

Get the latest news from Search Engine Journal!
We value your privacy! See our policy here.
  • Jenny thomas

    Can you help me get rid of a person who has set up and idenical facebook account as mine? they have sent out requests to all my contact?