All News

Industry & Advocacy News

Authors: Protect Your Facebook Account from Hacking

Closeup of a blue Facebook app icon on a smartphone screen

We want to make you aware of a series of hacking incidents targeting authors’ Facebook accounts over the last few weeks. We’ve received a number of reports from members detailing how hackers obtained control of Facebook profiles and pages belonging to them or other authors in their communities. In some instances, the hackers began to impersonate the authors and use their pages to run scams, soliciting money from their connections.

We are concerned that hackers are deliberately targeting authors’ accounts to exploit their large followings and connections. The attacks often begin with the hacker changing the email address associated with the Facebook account, effectively locking out the rightful owner. Many authors became aware of the hack after receiving email notices from Facebook informing them that their account email addresses had been changed. We suspect that the hackers may have initially hacked into the authors’ emails and used them to log into the accounts before changing the email addresses attached to the accounts.

One Authors Guild member reported losing more than 6,000 friends and followers due to a hacker taking over their account. Unfortunately, the hacker also managed to scam one of the author’s connections out of $1,000 via PayPal before Facebook deactivated the compromised profile. Another author with hundreds of thousands of followers fell victim to a similar attack, while multiple others have reported their profiles being cloned, with hackers impersonating them and contacting their followers.

Losing access to a Facebook profile and account can be professionally damaging for authors because re-gaining access to the accounts is a difficult process that often doesn’t work. We have heard from authors who contacted Facebook after their accounts were hacked who said they have not received adequate assistance. We are talking to Facebook and Meta about a process that would enable authors to regain access to compromised accounts.

Protecting Your Facebook Account

While we continue our efforts to convince Facebook and Meta to implement processes for quicker and more efficient responses to account hacking—and, especially, the re-instatement of compromised accounts—we recommend taking the following steps to ensure your Facebook account is secure:

  • Use a strong, unique password: Create a complex password that you don’t use for any other accounts. Avoid using personal information or common words in your password. Consider using a passphrase instead of a traditional password.
  • Enable two-factor authentication (2FA): This is crucial for adding an extra layer of security.
  • Regularly monitor your account settings: Pay close attention to the email address and phone number associated with your account. If anything changes, act immediately.
  • Control access to your pages: Ensure that whoever has control or moderator access to your pages is reliable.
  • Be extremely cautious of phishing attempts: Don’t click on suspicious links or provide your login information to unverified sources. Always check the website’s URL before entering your login information. Remember, Meta (Facebook) will never ask for your password via email.
  • Utilize all of Facebook’s security features: Familiarize yourself with and use Facebook’s built-in security options, such as login alerts and recognized devices.
  • Secure your email account: Since email is often used for account recovery, ensure your email account is also well-protected with a strong password and 2FA.
  • Limit third-party app access: Only grant permissions to apps you absolutely trust and regularly review which apps have access to your Facebook account.
  • Educate your team: If you have assistants or team members who help manage your social media, ensure they are also following these security practices.

If you suspect your account has been compromised:

  1. Try to log in and change your password immediately.
  2. If you can’t log in, report the issue to Facebook.
  3. Alert your friends and followers through other platforms about the potential hack.
  4. Document everything: Take screenshots, save emails, and keep a record of all communications related to the hack.

For more information on securing your account and reporting potential hacks please visit these Facebook help pages:

If you are an Authors Guild member whose Facebook account was hacked, please email the relevant information to staff@authorsguild.org. In your email, please tell us how many followers you had, whether you contacted Facebook/Meta, and whether you were able to regain control of your profile and author page.