So you’re seeing POSTS on your Facebook that you didn’t write?? Random spam, weird links, sketchy ads, or posts in a foreign language that you definitely didn’t create…
Your account has been hacked!!
And the scary part? Your friends are seeing these posts and might think YOU posted them. Your reputation is on the line while some hacker uses your account to spam garbage 🙁
I’m not gonna lie, getting hacked is one of the most violating things that can happen on social media. Someone has access to YOUR personal account and is using it for scams or spam.
How to Tell If Your Facebook Is Actually Hacked
First, let’s confirm your account is actually compromised and not just a tagging issue or app malfunction.
Signs your Facebook is hacked:
- Posts you didn’t create appearing on your timeline or in groups
- Friend requests sent to people you don’t know
- Messages sent from your account that you didn’t write
- Your password doesn’t work anymore or was changed without your permission
- Your email or phone number was changed on your account
- Login alerts from locations you’ve never been
If you’re seeing ANY of these? Your account is compromised deadass.
It’s definitely hacked…
What to Do RIGHT NOW
Time is CRITICAL when your account is hacked. Every minute the hacker has access, they can do more damage.
Immediate Actions
- Change your password IMMEDIATELY – If you can still log in, change it right now to something completely new
- Enable two-factor authentication – This prevents hackers from getting back in even if they have your password
- Check active sessions – Log out all devices you don’t recognize
- Remove suspicious apps – Revoke access to any third-party apps you don’t remember authorizing
- Alert your friends – Post or message people that your account was compromised so they don’t fall for scams
Do these steps IN ORDER, don’t skip any of them.
Move fast!!
Change Your Password
If you can still log into your Facebook account, change your password IMMEDIATELY. Go to Settings & Privacy → Settings → Security and Login → Change Password.
Make it a STRONG password. At least 12 characters, mix of uppercase, lowercase, numbers, and symbols. Don’t use the same password you use anywhere else. Don’t use common words or personal info like birthdays.
Make it impossible to guess…
And if you CAN’T log in because the hacker changed your password? Skip to the account recovery section below.
Enable Two-Factor Authentication< /h3>
Go to Settings & Privacy → Settings → Security and Login → Use two-factor authentication. Turn it ON.
Choose either text message codes or an authenticator app (authenticator app is more secure). This means even if hackers get your password, they CAN’T log in without the second authentication code that only you have access to.
This is the MOST IMPORTANT security feature. If you only do one thing after getting hacked, make it this no cap.
This stops them completely…
Check Active Sessions and Log Out Hackers
Go to Settings & Privacy → Settings → Security and Login → Where You’re Logged In.
You’ll see a list of all devices and locations where your account is currently logged in. Look for anything suspicious – devices you don’t own, locations you’ve never been, browsers you don’t use.
Click the three dots next to suspicious sessions and select Log Out. Do this for EVERY session that isn’t yours. This kicks the hacker out of your account immediately.
Get them out NOW…
Remove Suspicious Third-Party Apps
Hackers often use malicious apps to gain access to your account. Go to Settings & Privacy → Settings → Apps and Websites.
You’ll see every app and website that has access to your Facebook. Remove ANYTHING you don’t recognize or don’t remember authorizing. If you see sketchy-looking apps with names you don’t trust? Delete them immediately.
These apps can post on your behalf, access your messages, and see your personal info. Getting them off your account is critical.
Delete the Unauthorized Posts
Go to your profile and scroll through your timeline. Find the spam posts the hacker made and delete them. Click the three dots on each post → Move to trash.
Check your Activity Log too (click the three dots on your profile → Activity Log). This shows ALL activity on your account including posts, comments, and likes. Delete anything the hacker did.
Clean up the mess…
Also check if the hacker posted in any GROUPS you’re in. Go through your groups and delete any spam posts they made there too. Similar to when you need to delete regular Facebook posts, just tap the three dots and remove them.
If You Can’t Log In (Hacker Changed Password)
Okay so the hacker was smart and changed your password, locking you out of your own account… here’s how to get it back.
Use Facebook’s Account Recovery
Go to facebook.com and click Forgot Password? on the login screen. Enter your email address or phone number associated with the account.
Facebook will send you a recovery code to your email or phone. Enter that code to reset your password. Make the new password STRONG (12+ characters, complex).
Get your account back…
If the hacker changed your email AND phone number? This gets trickier. Click “No longer have access to these?” and follow Facebook’s identity verification process. You’ll need to upload a photo of your ID to prove you’re the real account owner.
This process can take 24-48 hours for Facebook to review. It’s frustrating but necessary for real. If you’re also dealing with recovery issues because your phone number changed, the verification process is the same.
Report the Hack to Facebook
Go to facebook.com/hacked and follow the prompts to report your account as compromised. Facebook has a specific tool for hacked accounts that guides you through recovery.
This tool will help you secure your account, review recent activity, and undo damage the hacker caused. It’s specifically designed for compromised accounts and works better than generic support.
How Your Account Got Hacked in the First Place
Let’s talk about HOW hackers got into your account so you can avoid it happening again.
Common ways Facebook accounts get hacked:
- Phishing emails/messages – Fake “Facebook security” emails with malicious links
- Weak passwords – Easy-to-guess passwords like “password123” or your birthday
- Password reuse – Using the same password across multiple sites, and one got breached
- Malicious apps – Sketchy third-party apps you granted access to
- Public WiFi – Logging into Facebook on unsecured public networks
- Keyloggers/malware – Malware on your device recording your keystrokes
Most hacks happen because of phishing or weak passwords. Hackers aren’t sophisticated masterminds, they just exploit basic security mistakes.
It’s usually something simple…
Phishing Is the Biggest Threat
You get an email or message that LOOKS like it’s from Facebook saying “Your account will be deleted” or “Suspicious login detected” with a link to “verify your account.”
You click the link, enter your username and password on a fake page… and BAM, hackers now have your credentials.
Never click suspicious links!!
ALWAYS check the URL. Real Facebook login is facebook.com, NOT “faceb00k-security.com” or whatever sketchy domain phishing sites use.
Weak Passwords Are Easy Targets
If your password is your name, birthday, “password,” “123456,” or anything simple? Hackers can crack it in SECONDS using automated tools.
Use a password manager to generate and store strong random passwords. Never reuse passwords across different sites. If one site gets breached and your password leaks, hackers will try that same password on Facebook, email, banking, everything.
Preventing Future Hacks
Now that you’ve secured your account, let’s make sure it STAYS secure.
Security Checklist
Keep two-factor authentication ON. This is non-negotiable. It’s the single most effective security measure you can have.
Use a password manager. Tools like 1Password, Bitwarden, or LastPass generate strong unique passwords for every site and remember them for you. You only need to remember one master password.
Don’t click suspicious links. If you get an email or message claiming to be from Facebook, go DIRECTLY to facebook.com instead of clicking the link. Log in from there to check if there’s really an issue.
Review your connected apps regularly. Go to Settings → Apps and Websites every few months and remove apps you don’t use anymore. The fewer apps with access, the better.
Check login alerts. Facebook sends notifications when your account logs in from a new device or location. Pay attention to these! If you see a login you didn’t make? Change your password immediately.
Watch out for similar problems…
If you keep getting locked out or having issues with your account saying temporarily unavailable, it might be related to security flags from the hack. Also, be careful about two-factor authentication codes not arriving – make sure that’s working properly.
What If the Hacker Locked You Out Completely?
Sometimes hackers are thorough and change EVERYTHING – password, email, phone number, recovery options. You’re completely locked out.
This is the worst scenario…
Your only option is Facebook’s identity verification process. Go to facebook.com/hacked and follow the prompts for accounts you can’t access. You’ll need to upload a government-issued ID (driver’s license, passport, etc.).
Make sure the name on your ID matches the name on your Facebook account. Facebook will review your ID and, if approved, give you access back to your account. This process takes 24-48 hours typically, sometimes longer lowkey.
While waiting, tell your friends through other platforms (text, Instagram, WhatsApp) that your Facebook was hacked so they don’t fall for any scams the hacker might be running.
Final Thoughts
Getting hacked is scary and violating, but you CAN recover from it. Change your password, enable two-factor authentication, remove suspicious apps, check active sessions, and delete unauthorized posts.
Act fast and stay calm…
If you’re locked out, use Facebook’s recovery tools and identity verification. It’s frustrating but effective for real.
Most importantly, LEARN from this. Use strong unique passwords, enable two-factor authentication on EVERYTHING (not just Facebook), don’t click suspicious links, and stay vigilant about account security.
If this helped you recover your hacked Facebook account, share it with anyone else dealing with unauthorized posts or compromised accounts… because this happens to way too many people and we all need to know how to fix it fast!!