What to Do If Your Facebook Account Is Hacked
This is a practical consumer-safety guide for readers in the United States. It is written to help you act quickly, document the problem, contact the right official channels, and avoid making the situation worse.
If you are dealing with hacked Facebook account, the safest first move is to pause, stop interacting with the scammer or compromised account, and verify everything through an official or trusted channel. A hacked Facebook account means someone may have your password, session token, verification code, recovery email, phone number, or device access. Fast action matters because the attacker may change recovery details, make purchases, message your contacts, steal private files, or use the account to break into other services. If money, identity details, bank logins, or account passwords were shared, act the same day: contact the financial company or platform, change passwords from a trusted device, save proof, and report the incident through official government or company channels.
Do not assume that a convincing voice, polished video, professional email, or familiar profile means the request is real. Modern scams often look and sound credible. The practical test is whether the request asks you to act urgently, keep the situation secret, use unusual payment methods, share security codes, install software, or move outside normal company support channels.
Emergency Action Box: Do This First
- Stop communicating with the person or page that triggered the problem.
- Do not send more money, verification codes, passwords, or identity documents.
- Save screenshots, messages, URLs, caller IDs, transaction IDs, and dates before deleting anything.
- Use the official account recovery page for the affected platform. Do not use phone numbers from comments, ads, or search-result snippets.
- Change the password, enable two-factor authentication, remove unknown devices, and review recovery email and phone details.
- Check purchases, payment methods, messages, forwarding rules, connected apps, and recent security activity.
- If anyone is in immediate physical danger, call 911 or local law enforcement. If the issue is financial fraud, online account compromise, identity theft, or cyber-enabled crime, use the official reporting and recovery paths described below.
Quick Summary Table
| Question | Practical answer |
|---|---|
| What is the main risk? | Facebook account compromise can lead to money loss, account takeover, identity theft, malware, payment fraud, or follow-up scams. |
| What should you do first? | Stop interacting, save proof, verify independently, and contact the correct company or financial institution if money or accounts are involved. |
| Can money be recovered? | Sometimes, but recovery is not guaranteed. Timing, payment method, and provider rules matter. Report quickly and keep evidence. |
| Who should you contact? | The affected platform or financial institution, FTC ReportFraud.gov, FBI IC3 for internet-enabled crime, and IdentityTheft.gov if identity data was exposed. |
| What proof should you save? | Screenshots, URLs, caller IDs, messages, emails, transaction IDs, account alerts, device logs, receipts, and complaint confirmation numbers. |
| What should you avoid? | Do not send more money, share codes, install remote access apps, delete proof, trust recovery scammers, or use support numbers from random search results. |
What This Scam or Problem Usually Means
A hacked Facebook account means someone may have your password, session token, verification code, recovery email, phone number, or device access. Fast action matters because the attacker may change recovery details, make purchases, message your contacts, steal private files, or use the account to break into other services.
In a real-life Facebook account compromise, the scammer’s goal is usually simple: get money, get login access, get personal information, or get enough trust to lead you into a larger fraud. Some incidents are one-time attempts, such as a suspicious email or fake app. Others are multi-step operations where the criminal builds trust over days or weeks, then asks for a payment, account change, investment deposit, recovery code, or private document.
The most important principle is independent verification. If the request comes through a phone call, text, social profile, video, email, job board, or app store listing, do not use that same channel to verify the claim. Open a browser yourself, type the official website, use a saved phone number, call a family member directly, or use the platform’s official help center. This slows the scam down and gives you time to think.
Warning Signs
- Urgency, secrecy, or pressure to act before verifying independently.
- Requests for gift cards, crypto, wire transfers, payment apps, or unusual payment methods.
- Requests for passwords, one-time codes, PINs, remote access, or recovery codes.
- Instructions not to contact your bank, family, employer, police, or the real company.
- Password, recovery phone, recovery email, username, profile photo, or two-factor settings changed without your approval.
- Friends or contacts report strange messages, payment requests, or links from your account.
- You see unfamiliar devices, locations, orders, payments, ads, posts, or forwarding rules.
A single warning sign does not always prove fraud, but multiple warning signs should make you stop. The safest approach is to treat urgency, secrecy, unusual payment methods, and requests for security codes as serious danger signals. Real companies, banks, platforms, and government agencies should not pressure you to keep the situation secret or pay through methods designed to be difficult to reverse.
Step-by-Step Recovery Plan
- Go directly to the official recovery page for the platform. Do not click recovery links from strangers or ads.
- If you can sign in, change the password immediately and sign out all other sessions.
- Turn on two-factor authentication and save backup codes somewhere secure.
- Check recovery email, recovery phone, forwarding rules, linked devices, connected apps, payment methods, and recent activity.
- Remove suspicious posts, messages, rules, addresses, ads, orders, or connections after saving proof.
- Warn contacts if the account sent scam messages or payment requests.
- Report unauthorized charges to the platform and to your bank/card issuer if payment details were used.
After completing the first recovery steps, create a simple incident log. Record the date, time, who you contacted, what they told you, claim or case numbers, and follow-up deadlines. This log helps if your bank, payment app, platform, insurer, police department, or government agency asks for a timeline later.
Proof Checklist
- Screenshots of messages, emails, chats, account alerts, app pages, or video-call profiles.
- Sender email addresses, usernames, profile URLs, phone numbers, wallet addresses, website URLs, and shortened links.
- Date, time, time zone, and sequence of events.
- Transaction IDs, receipts, payment confirmations, bank/card statements, wire references, or crypto transaction hashes.
- Device screenshots showing unknown apps, permissions, connected sessions, or security alerts.
- Copies of police reports, FTC reports, IC3 complaints, IdentityTheft.gov reports, and platform support case numbers.
- Names and contact details of any company, bank, platform, recruiter, profile, or caller involved.
Who to Contact First
- The official account recovery page for the affected platform. Use only the official website or app help center.
- FTC ReportFraud.gov for scam reports, fake business claims, and payment-scam documentation.
- FBI IC3 for internet-enabled fraud, cybercrime, extortion, business email compromise, or online money loss.
- Your bank, card issuer, payment app, wire company, or crypto exchange if money or payment details were involved.
- Local police or 911 if someone is in immediate danger, threatened, stalked, or physically at risk.
- IdentityTheft.gov if your Social Security number, driver’s license, tax data, health insurance, or new-account identity details were exposed.
When contacting any company, use the official website, official app, card back phone number, bank statement contact information, or a saved trusted phone number. Avoid calling numbers from pop-ups, comment sections, sponsored search ads, fake invoices, direct messages, or suspicious emails.
Official Reporting Links
- FTC - What To Do If You Were Scammed: consumer.ftc.gov
- FBI IC3: ic3.gov
- IdentityTheft.gov: identitytheft.gov
- Meta Account Recovery Hub: meta.com
- Facebook Help Center - hacked accounts: facebook.com
- FTC ReportFraud.gov: reportfraud.ftc.gov
- CISA - Recognize and Report Phishing: cisa.gov
These links are included for verification and reporting. Platform pages can change, so if a link does not open, go to the company’s official homepage and search for account recovery, hacked account, fraud, security, or support from there.
Money Recovery Options
If the hacked account was used to buy goods, send money, change payment methods, purchase gift cards, or run ads, contact both the platform and your bank or card issuer. Ask the platform to secure the account and review unauthorized transactions. Ask your bank or card issuer whether the charge can be disputed, blocked, or investigated as fraud. If the account stored gift card balances, loyalty points, crypto wallets, or saved payment methods, document the balances before and after the incident.
When speaking to a bank, card issuer, payment app, or platform, be specific. Say whether the transfer was unauthorized, whether you were tricked, whether your account was compromised, and whether the payment is still pending. Ask for the exact claim type, expected timeline, documentation needed, and confirmation number. If a claim is denied, ask how to appeal and what additional evidence would matter.
Account and Device Security Checklist
- Change the affected account password from a trusted device.
- Change the password for your main email account before changing less important accounts.
- Turn on two-factor authentication and save backup codes securely.
- Sign out of unknown sessions and remove unknown devices.
- Check recovery email, recovery phone, security questions, forwarding rules, and linked apps.
- Remove suspicious apps, browser extensions, device profiles, or remote access tools.
- Update your phone, browser, computer, and security software.
- Monitor bank, card, payment app, and shopping accounts for unauthorized activity.
Credit and Identity Protection Steps
If Social Security numbers, driver’s licenses, tax information, health insurance details, bank logins, or enough identity information to open accounts may have been exposed, add identity protection steps. Use IdentityTheft.gov to create a recovery plan if identity theft is suspected. Review credit reports, consider a credit freeze, and place a fraud alert if appropriate. Contact companies where fraudulent accounts were opened and keep written confirmation of disputes, closures, and investigations.
For financial accounts, review recent statements and account alerts. For email accounts, check forwarding rules and connected apps because attackers often use hidden rules to keep receiving copies of security codes or password-reset messages. For social accounts, warn contacts if scam messages were sent from your account.
What Not to Do
- Do not send more money to release, unlock, verify, tax, ship, or recover earlier money.
- Do not share one-time codes, passwords, PINs, backup codes, or security-question answers.
- Do not install remote-access apps for strangers or let a caller control your computer or phone.
- Do not use customer-support numbers from pop-ups, comments, suspicious search ads, or social media replies.
- Do not delete evidence before saving screenshots and transaction details.
- Do not assume a real-looking voice, video, logo, or website proves the request is legitimate.
- Do not pay recovery companies that promise guaranteed refunds or claim they have already found your money.
Recovery Scam Red Flags
People who have already been scammed are often targeted again. A recovery scammer may claim to be a hacker, investigator, government worker, exchange employee, bank insider, or legal recovery expert. They may say your money has been found but you must pay a release fee, tax, wallet verification fee, software fee, or legal fee first. Real reporting agencies do not ask victims to pay gift cards, crypto, wire transfers, or payment-app fees to recover money.
- “We found your stolen money. Pay a fee to release it.”
- “Do not contact your bank or police.”
- “Install this app so we can help recover your account.”
- “Send crypto to verify your wallet.”
- “Guaranteed recovery or your money back.”
- “We work with the FBI, FTC, bank, or platform but cannot provide official proof.”
Script or Template You Can Use
“My account was accessed without my permission. I need help recovering and securing it. Please help me review login activity, remove unauthorized sessions or devices, restore my recovery information, and review any unauthorized purchases, messages, posts, orders, or changes made during the compromise.”
Before you call, write down the facts in short bullet points. Keep emotion out of the report and focus on dates, amounts, account names, URLs, payment methods, phone numbers, and what the scammer asked you to do. Clear documentation makes it easier for support staff, fraud teams, and investigators to understand what happened.
Timeline: First 10 Minutes, Today, and This Week
- First 10 minutes: stop communication, do not click more links, save proof, and lock or secure the affected account or card if possible.
- First hour: change passwords from a trusted device, contact the affected bank or platform, report unauthorized transactions, and make sure recovery details have not been changed.
- Same day: file FTC, IC3, platform, app-store, or IdentityTheft.gov reports if relevant. Warn family, coworkers, or contacts if the scam could spread through messages from your account or through voice-cloning attempts.
- This week: follow up on claims, monitor statements, update passwords, add two-factor authentication, review credit reports where needed, and watch for recovery scams that target victims after the first incident.
FAQ: Frequently Asked Questions
Can I get my money back?
Possibly, but it depends on the payment method, timing, provider rules, and whether the money can be stopped before it is moved. Contact the payment provider immediately and keep the claim number.
Should I file a police report?
File a police report if there was theft, threats, identity theft, a local suspect, stolen property, or your bank or insurer asks for one. For online fraud, also consider IC3 and FTC reporting.
Should I report to the FTC or FBI IC3?
Use FTC ReportFraud.gov for scams and fraud. Use FBI IC3 for internet-enabled crime, cyber fraud, hacking, extortion, or online money loss. You can often report to both.
What if I only clicked a link but entered nothing?
Close the page, avoid entering information, delete/report the message, and monitor the account. If the page downloaded something or asked you to install an app, run security checks.
What if I shared a password or verification code?
Change the password immediately, sign out other sessions, enable two-factor authentication, and check recovery details and account activity.
What if the company denies my claim?
Ask for the reason in writing, ask about appeal options, provide additional proof, and consider escalating to CFPB, IC3, FTC, the platform, or your state consumer protection office depending on the situation.
Can scammers hack me with only a phone number?
A phone number alone is usually not enough for full account access, but it can help scammers target you with SIM-swap attempts, verification-code scams, phishing, or impersonation calls.
Should I freeze my credit?
Consider a credit freeze if Social Security number, driver’s license, or enough identity information to open accounts was exposed. A freeze can make it harder for criminals to open new credit in your name.
This article was written using official or primary guidance where possible, including Meta account recovery guidance, FTC scam recovery resources, FBI IC3 reporting, CISA phishing guidance, and IdentityTheft.gov identity-theft recovery guidance. Product and platform pages can change. Always verify account recovery, dispute, and reporting instructions directly on the official website or official app before taking action.
- FTC - What To Do If You Were Scammed: consumer.ftc.gov
- FBI IC3: ic3.gov
- IdentityTheft.gov: identitytheft.gov
- Meta Account Recovery Hub: meta.com
- Facebook Help Center - hacked accounts: facebook.com
- FTC ReportFraud.gov: reportfraud.ftc.gov
- CISA - Recognize and Report Phishing: cisa.gov
Disclaimer
This guide is for general information only. It is not legal, financial, cybersecurity, law-enforcement, or emergency advice. For urgent threats, call 911 or local law enforcement. For financial loss, contact your bank, card issuer, payment app, wire company, platform, or the relevant official agency as soon as possible. No article can guarantee refunds, account recovery, or law-enforcement action.
How to Create Strong Passwords and Manage Them * What is T
- How to Create Strong Passwords and Manage Them
- What is Two-Factor Authentication and How to Set It Up
- How to Recognize and Avoid Phishing Scams
- A Guide to Online Identity Theft Protection
- Steps to Take If Your Email Account Is Hacked
- ---

About the TDL Expert Panel
TDL Expert Panel · TheDigitalLife Editorial Team
TDL Expert Panel is the editorial team behind TheDigitalLife. The team researches, reviews, and creates practical guides to help everyday readers make better decisions about home repair costs, refunds, AI tools, digital safety, productivity, and useful online resources. Each guide is written to be clear, useful, and easy to understand.
