Facebook Hacked Account: How It Happens & How to Fix It?

Did you ever experience odd things happening with your Facebook account, like friend requests being sent to unfamiliar people or sudden changes to your details? Did it make you question whether your account has been compromised?

Facebook, boasting nearly 3.03 billion users worldwide, is the largest fish in the social media ocean. This makes it a tempting target for cybercriminals.

Shockingly, around 600,000 Facebook accounts are believed to be compromised daily. Almost half of all adults in the US have had their private information breached by these online criminals.

In this article, we will guide you through the warning signs that your Facebook account might have been breached. Additionally, we’ll offer some advice on reclaiming control of your account and enhancing its future security.

How to know if your Facebook account was hacked?

How to know if your Facebook account was hacked

If an unauthorized person infiltrates your Facebook account, they will likely leave signs. You should first sign into your Facebook account to spot these indicators. One of the major indications can be found by checking your login activity and seeing the devices that used your account.

Other signs your Facebook was hacked

Besides checking for unfamiliar logins, as mentioned above, there are other indications that your Facebook account might have been hacked. Look out for unauthorized changes to your account details or unusual activities that you didn’t initiate, such as:

  • Unexpected changes to your name, birthday, email, or password.
  • Friend requests are being sent to strangers from your account.
  • Messages you didn’t compose are being sent from your account.
  • Posts you didn’t make are showing up on your timeline.

Why do hackers want your account?

Why do hackers want your account | AndreyPopov via Canva

Instances of unauthorized individuals commandeering accounts on Facebook, Instagram, Twitter (now X), LinkedIn, and other platforms are common. The culprit could be someone you’re acquainted with, playing a prank. It might be an ex-partner seeking retaliation.

In some situations, it could be relationship interference or industrial spying. In these instances, the hacker could send unpleasant messages to your contacts, reveal private photos, or wipe out your entire contact list.

However, not all breaches are personal. Often, the intention is commercial. You could be extorted, or your unique username could be sold on the Dark Web—an area where such digital commodities fetch a good price. It’s akin to a personalized license plate in the digital realm.

How do they hack your Facebook Account?

How do they hack your Facebook Account

There are several ways in which someone can hack your Facebook account. Here are just a few:

1. Phishing

Phishing continues to be a common strategy for hackers targeting social media accounts. With roughly 3.4 billion phishing emails being sent daily, it’s crucial to recognize the red flags.

Hackers can create fake sites designed to steal your login credentials when you try to sign in. This usually begins with an email containing a link prompting you to log in to your account.

Do you know that phising isn’t limited to just social media or scam emails/messages? Check out our article on voice phishing, aka vishing, to see how calls can be used to .

2. Keylogging

Keylogging is another frequent hacking method. Keyloggers are programs that can remotely install on your device to record your keystrokes. They can capture sensitive data such as your passwords or banking details.

3. Password storage 

Storing passwords can be convenient for remembering them, but it poses a risk. If hackers infiltrate your browser’s password manager, they can access and exploit your private data.

If you’re currently using LastPass as your password manager and want to switch to something safer, follow through our guide on switching from LastPass to Bitwarden.

4. Large database breaches 

Massive database breaches are common and can occur on any online platform. If a service where you have an account gets hacked, the hackers might try to use the same email and password on various platforms. Hence, using unique passwords for each online service is always recommended.

5. Social engineering

Social engineering involves psychological manipulation where a hacker pretends to be an acquaintance or colleague, tricking you into disclosing personal information such as service passwords.

6. Knowing (or guessing) your password

It might seem straightforward, but maintaining the confidentiality of your Facebook password is crucial. Associates carry out many instances of phone hacking, so keeping your login details private, even from friends, family, or partners, is essential.

These six methods represent some of the most common ways hackers might compromise your Facebook account, and they’re just scratching the surface. Fortunately, there are measures you can take to defend yourself.

How to recover your hacked Facebook account?

So, your Facebook account has been compromised. Here are some steps, measures, and actions you should take immediately:

1. Act immediately

Act immediately | Beholding via Canva

If you receive an email from Facebook indicating odd activity, acting quickly is essential. The more time an unauthorized individual has with your account, the more changes they can make to crucial information, which could complicate your efforts to reclaim control.

Pay close attention to all security-related emails from Facebook and promptly follow the instructions. Click on options like “Change Password,” “Secure your account,” and any other links that might assist you in regaining access to your compromised Facebook account.

Avoid creating a duplicate Facebook account. This step could significantly complicate, and sometimes even hinder, the recovery of your original Facebook account.

2. Change your password

Changing your Facebook password is the first line of defense against hackers. Here is how you can do it:

On mobile

  1. In the Facebook app, click on the “Menu” icon at your screen’s bottom right corner.
  2. Next, select “Settings & Privacy.”
  3. In the ensuing menu, choose “Password and Security.”
  4. Under the “Login” section, tap “Change Password” and follow the instructions to generate a new password.
Change Facebook password on mobile

From your web browser

  1. Click on your profile picture in the screen’s top right corner.
    Click your profile pic in top right
    Click your profile picture in top right
  2. Next, select “Settings & Privacy.”
    Select Settings & Privacy.
    Select Settings & Privacy
  3. In the following menu, choose “Settings.”
    Open Settings
    Open Settings
  4. Go to “Password and Security.”
    Go to Password and Security
    Go to Password and Security
  5. Then again, select password and security under the “Account Centre,” then select “Change password” and follow the directions to set a new password.
    Select password and security
    Select password and security

3. Alert your contacts

Alert your friends

If your account has been hacked, there’s a high chance it has already been used to reach out to people on your friend’s list. You’ll have to inform them not to trust any links or download apps from you—whether through wall posts, Facebook messages, or emails—when the intruder has access to your account.

4. Perform password recovery

If your password isn’t working and you suspect someone has modified it, your next action should be to employ Facebook’s account recovery options. Here are the steps:

  1. Navigate to the Facebook login page and click “Forgotten password?”.
    Click Forgotten Password
    Click Forgotten Password
  2. Input your account’s email address or phone number and click “Search.”
    Enter your email or phone number and click Search
    Enter your email or phone number and click Search
  3. You’ll see a blurred list emails associated with your Facebook account. To receive recovery code on them click “Continue.”
    Click Continue to receive the recovery code
    Click Continue to receive the recovery code
  4. Input the code you received via text or email and click “Continue.”
    Input the login code and click Continue
    Input the login code and click Continue
  5. Once the code is submitted, Facebook will allow you to change the password. Create a new password and click “Continue” to confirm.
    Input your new password and click Continue
    Input your new password and click Continue
  6. Here Facebook will give you an option to log out from all the existing sessions. Select the “Log out from other devices” option and click Continue. You’ll logged out from all the devices except the one you are using right now. 
    Select the option Log out from other devices and click Continue
    Select the option Log out from other devices and click Continue

5. Reporting the hacked account to Facebook

  1. Access Facebook’s hacked account page. You can do this by visiting https://www.facebook.com/hacked/ on a computer browser.
    Access Facebook's hacked account page
    Access Facebook’s hacked account page
  2. Click on the option “Someone else got into my account without my permission” and click continue.
    Click Continue
    Click Continue
  3. Click on “Get Started.” Facebook will then scan your account for recent changes or activities.
    Click on Get Started
    Click on Get Started
  4. Click “Continue.”
    Click Continue
    Click Continue
  5. Set a new password. Enter your new password in the “New” and the “Re-type New” fields. Click “Continue.”
    Type new password and click Save
    Type new password and click Continue
  6. Click “Go to News Feed.” This will redirect you to your News Feed. At this point, you should have full control over your account once again.
    Click Go to News Feed
    Click Go to News Feed

6. Remove unknown apps

Facebook enables you to install and log in to various apps. However, removing apps you no longer use or don’t recognize is critical. Many of these apps have access to your personal information, so it’s important not to allow them to access your details. Here’s how to eliminate unwanted applications:

  1. From your Settings, navigate to the “Apps and Websites” option.
    Open the Apps and Websites
    Open the Apps and Websites
  2. Tick the box next to the app you wish to remove and click “Remove.”
    Click Remove
    Click Remove
  3. Confirm the action by clicking “Remove” again. If needed, you can also delete any data posted by the app.
    Click Remove to confirm
    Click Remove to confirm

7. Log out from all devices

As discussed earlier, you might find unknown devices in your login activity details. You need to remove them by logging out from them. Here is how to do it:

  1. Click on your profile picture in the top right corner to access the “Account” dropdown menu.
  2. Select “Settings & Privacy” from this dropdown, then click “Settings.”
  3. Then, choose the “Password and Security” option.
  4. Under the “Password and Security Checks” section, find and click on the “Where you’re logged in” option to reveal more details.
  5. You will now see a comprehensive list of devices used to access your Facebook account most recently, along with the time they were active.
Log out from all devices

Find out the suspicious devices and get rid of them.

8. Recover your Facebook account with identity verification

Facebook’s latest security feature, identity verification, allows you to recover your account access. Here’s how to employ this feature if your Facebook account gets hacked.

  1. Access Facebook’s Verify Your Account page.
    Access Facebook's Verify Your Account page
    Access Facebook’s Verify Your Account page
  2. Scroll to the end. Input your email address, and attach a copy of your government-issued ID to the form.
    Upload you ID
    Upload you ID
  3. Click “Send” to submit your information
    Click Send
    Click Send

Facebook will take 1-3 business days to assess your information and then provide you with instructions on how to regain access to your account.

Tips to make your Facebook account secure

Tips to make your Facebook account secure | Lobo via Canva

Whether you’ve experienced a hack or not, it’s essential to reinforce the security of your Facebook account. There are various steps you can take to achieve this. Here’s what you need to do:

1. Use Two-factor Authentication

Facebook provides a two-factor authentication feature to enhance the security of your account. This feature requires you to input a unique login code each time you try to access your Facebook account from a new device or browser. To activate this feature, follow these steps:

  1. From your settings go to the “Password and Security” listed under “Account Center.” 
    Go to Password and Security
    Go to Password and Security
  2. Navigate to the “Password and Security” from your settings and select the “Two-step Verification” section.
    select the "Two-step Verification
    Select the “Two-step Verification”
  3. Choose the security method you prefer and follow the prompts on the screen to enable this feature.
    Choose the security method you prefer
    Choose the security method you prefer

2. Get alerts about unrecognized logins

Facebook allows users to receive alerts regarding unrecognized logins to their accounts. This security feature sends alerts whenever someone attempts to log in from an unfamiliar device or browser. As a safety measure, Facebook can even log you out of your account on one or all devices because of this.

Anyhow, this alert includes information about the location of the attempted login. Follow these steps to activate this feature:

  1. From Account center, go “Password and Security” and scroll down to “Login alerts” and click on it. 
    Scroll down to Login alerts
    Scroll down to Login alerts
  2. Choose how you’d like to receive your alerts, such as via email or a Facebook notification from a recognized device. Just tick the circle, and it will automatically save.
    Choose how you'd like to receive your alerts
    Choose how you’d like to receive your alerts

3. Use a strong password

It’s essential to use a robust password for your account. Avoid using easily guessable information such as your name, birth date, or common passwords. Opt for a complex combination of letters, numbers, and special characters to enhance your account’s security.

4. Keep your device and apps updated

Consistently updating your operating system and applications is another crucial security measure. These updates often contain patches for known vulnerabilities that hackers could exploit. Staying up-to-date significantly reduces the risk of being compromised.

5. Parting words of wisdom

  • Think before you click: Exercise caution with messages purporting to be from social media platforms alerting you to account breaches. Don’t follow embedded links or dial provided numbers. They could be hacker traps. Instead, independently access the site or its app to verify.
  • Notice the abnormal: Watch for signs of activities you didn’t perform—messages you didn’t send, posts you didn’t make, purchases you didn’t authorize.
Your click can take you anywhere | Prototypr

Final Thoughts

With the rise of social and digital platforms, ensuring the safety of your online accounts is paramount. This guide provides detailed steps for regaining control over your Facebook account if it has been hacked.

Always remember, prevention is better than cure. Adopting security measures such as two-factor authentication, secure passwords, and regular updates can significantly reduce the chances of a hack. Keep a close eye on any unusual activity and respond promptly if you suspect a breach.

Cybersecurity isn’t a one-time process but an ongoing practice, so stay vigilant and keep your digital life secure.


Khalid Ali

Khalid is a versatile analyst honing his expertise for the past 5 years. With certifications from Google and IBM to back him up, his knowledge extends far beyond the routine coverage of the latest trends and in the industry.