A drawing of a man wearing a hat with red eyes.

I've Been Hacked

Certified Network & Cyber Security Engineers

It looks like a plain pink background with a gradient.

My facebook's been hacked, what can I do?

Losing access to your Facebook account due to a hack or scam can be stressful and overwhelming. Whether your account has been compromised by phishing, malware, or unauthorized access, understanding the steps to recover it and secure your online presence is essential.

This page provides a comprehensive guide, broken into sections to help you navigate the recovery process and prevent future incidents.


1. Common Facebook Hacks and Scams

Understanding how hackers and scammers operate is the first step to protecting yourself. Here are some of the most common methods used to compromise Facebook accounts:

Phishing Scams

  • How it works: You receive an email or message that appears to be from Facebook, often claiming your account is at risk or needs verification. It includes a link to a fake login page designed to steal your credentials.

Friend Impersonation Scams

  • How it works: Hackers pose as one of your friends, asking for your phone number or a login code sent to your phone. Once they have this information, they use it to access your account.

Malware Links

  • How it works: You receive a message like “Is this you in this video?” or “Check this out!” Clicking on the link installs malware on your device, which captures your login details.

Fake Facebook Support Messages

  • How it works: Scammers impersonate Facebook support, claiming your account will be disabled unless you provide personal information or login credentials.

Giveaway or Prize Scams

  • How it works: You’re told you’ve won a contest or prize and are asked to click a link or provide sensitive information to claim it.


2. How These Scams Work

Hackers exploit trust, urgency, and curiosity to trick you into sharing your information. Once they gain access to your account, they often:

  • Change your password and email to lock you out.
  • Use your account to scam your friends and family.
  • Access connected accounts, such as Instagram or third-party apps, for further exploitation.


3. Can Our Company Fix Your Account?

While we understand the frustration of losing access to your Facebook account, it’s important to know that only Facebook has control over account recovery and security. As a cybersecurity company, we:

  • Cannot recover your account directly: Facebook’s systems are designed to ensure only the rightful owner can regain access.
  • Cannot bypass Facebook’s processes: Recovery involves verification through Facebook’s tools, which we cannot override.
  • Cannot contact Facebook on your behalf: Facebook does not provide a direct line for third-party inquiries.

Our role is to guide you in taking the right steps and securing your online presence to prevent future incidents.


4. Steps You Can Take to Recover Your Facebook Account

If your Facebook account has been hacked or compromised, act quickly:

1. Use Facebook’s Account Recovery Tool

  • Visit the Facebook Recovery Page.
  • Enter your email address, phone number, or username linked to the account.
  • Follow the steps to reset your password.

2. Check Your Email for Notifications

  • If hackers changed your email address, Facebook may have sent a notification to your original email.
  • Use the “Secure your account” link in that email to regain control.

3. Verify Your Identity

  • If prompted, upload a government-issued ID to prove ownership of the account.
  • Follow the instructions provided by Facebook for identity verification.

4. Remove Unauthorized Devices

  • Once you regain access, go to “Settings & Privacy” > “Security and Login.”
  • Review the list of devices logged into your account and log out of any unfamiliar ones.


5. Getting Help from Facebook

Facebook offers tools and resources to assist users with account recovery:

Facebook Help Center

Visit the Help Center for step-by-step guides on securing your account and recovering access.

Report a Hacked Account

Use the Report a Hacked Account tool to notify Facebook of the issue and initiate the recovery process.

Submit an ID for Verification

If required, upload an official ID to confirm your identity. Facebook’s system will guide you through this process.


6. What to Do If Your Email or Instagram Is Also Hacked

Hackers often compromise your email or linked Instagram account to gain access to Facebook. Here’s what to do if this happens:

1. Secure Your Email Account

  • Change your password: Log in and update your email password.
  • Enable Two-Factor Authentication (2FA): Add a layer of security to prevent unauthorized access.
  • Check for suspicious activity: Look for unauthorized logins or email forwarding rules and remove them.

2. Secure Your Instagram Account

  • Reset your Instagram password using your secured email or phone number.
  • Enable 2FA on Instagram to protect it from future breaches.
  • Disconnect compromised email accounts or Facebook profiles from Instagram in the app settings.


7. How to Secure Your Facebook Account for the Future

Prevent future hacks and scams by following these best practices:

Enable Two-Factor Authentication (2FA)

  • Add an extra layer of security by requiring a code in addition to your password when logging in. Use an authenticator app for better protection than SMS codes.

Use a Strong, Unique Password

  • Create a password that combines uppercase and lowercase letters, numbers, and symbols. Avoid reusing passwords across accounts.

Beware of Phishing Attempts

  • Be cautious of emails or messages asking for your login information. Verify the sender and avoid clicking on suspicious links.

Monitor Account Activity

  • Regularly check your account’s security settings for unauthorised logins.
  • Log out of devices you don’t recognise.

Educate Yourself on Common Scams

  • Familiarise yourself with tactics like phishing and impersonation to better recognise suspicious activity.


8. Steps You Can Take to Recover Your Facebook Account (Even If Hackers Changed Your Details)

If the hacker has changed your email address, phone number, or password, making it impossible to access your account through the usual recovery methods, don’t panic. Facebook has tools to help you in these situations:

1. Use Facebook’s “No Access to Email or Phone” Option

If the email address or phone number linked to your account has been changed, Facebook allows you to bypass those details:

  • Go to the Facebook Recovery Page.
  • Enter your username, old email address, or phone number associated with the account.
  • When prompted to log in, select “No longer have access to these?”
  • Provide an alternative email address where Facebook can contact you.
  • Follow the steps to verify your identity, which may include answering security questions or submitting identification documents.

2. Check for Recovery Emails from Facebook

When hackers change your email address or phone number, Facebook often sends a notification to your original email address with a link to reverse the changes:

  • Search your email inbox (and spam folder) for a message from Facebook with the subject line “Your email address was changed.”
  • If you find the email, click the provided link to secure your account.

3. Report the Hacked Account to Facebook

If you cannot access the recovery email or phone number, you can still report the hack to Facebook:

  • Visit the Report a Hacked Account page.
  • Select “Someone else is using my account” and follow the prompts.
  • Facebook may ask you to submit a photo ID to verify your identity.

4. Use Trusted Contacts (If Previously Set Up)

If you’ve previously set up Trusted Contacts on your Facebook account:

  • Go to the login page and select “Forgotten password?”
  • Click “Reveal my trusted contacts” and follow the instructions to get recovery codes from your trusted contacts.
  • Use the codes to regain access to your account.

5. Getting Help from Facebook When Details Are Changed

Facebook provides tools specifically for accounts where email, phone numbers, or passwords have been altered by hackers:

  • Submit an Official ID: If all else fails, Facebook may require a government-issued ID to verify your ownership. Visit the Help Center for instructions on uploading your ID. Ensure the ID matches the name on your account.
  • Monitor Your Backup Email Accounts: If the hacker added a new email address to your account, Facebook may still send security notifications to any previously linked email addresses.

6. How to Prevent This in the Future

If your account has been recovered, take these steps to ensure it doesn’t happen again:

  • Enable Two-Factor Authentication (2FA): Require a security code for every login attempt, even if hackers obtain your password.
  • Review Your Security Settings: Regularly check the “Security and Login” section for unknown logins or devices.
  • Use a Strong Password: Avoid reusing passwords across accounts. A strong password is unique and difficult to guess.
  • Set Up Trusted Contacts: Add a few trusted friends to help you regain access to your account if needed.
  • Beware of Phishing Links: Hackers often use fake login pages or malicious links to steal your credentials. Verify any links before clicking.


Recovering a hacked Facebook account where the hacker has changed your details can be more challenging, but Facebook provides tools to help rightful owners regain access. Act quickly, use Facebook’s recovery options, and secure all your accounts to prevent further damage.

If you need additional help, explore our other social media recovery resources or visit Facebook’s Help Center for support.

Share by: