Your Facebook Business Page Was Hacked? Don’t Panic, Here’s What to Do

Experiencing a hacked Facebook business page is truly daunting. It’s comparable to discovering that the front window of your digital store has been vandalized. 

But do not fear; eMazzanti professionals have your back. Changing your password, turning on two-factor authentication, and double checking for page roles — in order to eliminate any unwanted users who were added — is key in securing your hacked account and keeping the bad actors away.  

Now, I know what you’re thinking – “But what if I can’t even log in?” Well, Facebook’s thought of that. They’ve got an entire process to recover a hacked page if you can’t access it.  

So, take a deep breath, get your favorite stress-relieving snack, and let’s get to it. 

Diagnosing a Hacked Facebook Business Page 

Spotting a hacked Facebook business page is not always easy. Cyber Criminals are getting more sophisticated, but telltale signs can alert you. 

Unexpected Posts or Messages 

If you log on to your business page and see some post in Portuguese about discount sunglasses offered by your company– even though you sell Dog Food in Finland — you have probably been hacked! Watch out for.: 

• Strange posts that you didn’t authorize

• Links or ads that you don’t recognize

• Messages to followers that you didn’t write

• Unusual changes to page information or settings

If you see content that seems off-brand or unlike your usual posts, it’s time to investigate. Don’t just delete and ignore these huge red flags; they could be the first sign that somebody else is controlling your page. 

Password and Email Alerts 

Facebook takes security seriously – almost as seriously as I (an Italian guy) take my Espresso order. They will often let you know if something is off. 

Pay attention to: 

• Emails concerning password changes which you did not initiate

• Notifications of logins from new devices or locations

• Notifications of added or removed page admins

If you receive such notifications, but you are not the one who carried out the activity, take action immediately! It means that someone without your authorization is trying to access your account. 

Remember, the watchword is vigilance. Regular checkups can help you detect problems earlier and, therefore, rescue your business page from potential hackers. 

What You Should Do 

First things first – let’s change that password faster than my cat runs to her food bowl. Here’s what I do: 

1. Visit Facebook’s login page.
2. Click “Forgot Account?” then click “Forgot Password?”
3. Enter the email or phone number linked to the account.
4. Follow the prompts to reset your password.

When you pick a password, pick a strong and unique one. Use upper and lowercase letters, numbers, and symbols – the works. And steer clear of personal info, including birthdays, pet names. But add numbers to both if you need to – especially if your dog’s name is 1234. 

Turn on two-factor authentication for added security  

Reporting to Facebook  

If you’ve changed your password and still run into trouble, then it’s time to call in the Facebook support cavalry. Here’s the next step:  

1. Go to the Facebook Business Help Center
2. Click “Report a Hacked Account”
3. Fill in the form details explaining what the hack is about.
4. Submit the report; then, wait for Facebook

Stay calm. It may take a few days for Facebook to respond. While waiting, inform your followers of the hacking incident. Share posts in other social network sites or your website to inform. 

Keep Your Facebook Business Page Safe In The Future 

Secure your Facebook business page to save yourself the hassle of cleaning up a coffee-spilled keyboard at 4 am, with these two critical ways. 

Two-Factor Authentication 

Two-factor authentication essentially becomes the second lock to your page. Here’s how to turn it on. 

1. Open your Facebook settings.
2. Hit the “Security and Login” option.
3. Locate and tap on “Use two-factor authentication.”
4. Choose either SMS or an authentication app, depending on what you like.

I would select an authentication app. You should be required to provide a code from your phone if logging in to a new device. 2FA isn’t perfect, but as a deterrence it’s a good one.  

Roles and Permissions Review 

Reviewing and managing who can access your page is KEY! The consultant you hired 13 years ago who did that project for you doesn’t need access to your page any longer. It’s time for a Facebook Spring cleaning! 

To view your page roles: 

1. Go to Page Settings
2. Click on “Page Roles”
3. Scroll through the list of users to verify that you recognize each.

Remove those who no longer require access 

For those who still require access, ensure that they are on the appropriate permission level. Key roles depend on what each one is going to do: 

• Admin: Full control

• Editor: Posting content and ads

• Moderator: Responding to comments

• Analyst: Viewing insights

Less Admins mean fewer weak points. Keep your admin inner circle tight 

Recovery and Assessment of Damage 

Always check for damage after your Facebook business page has been hacked. And then secure it.  

Activity Log and Audit Trail 

First, I jump into the activity log to see what the hacker did. It’s like being a digital detective. Look for unauthorized posts or comments; changes to page settings or info; new admins, or removed team members; and modified ad campaigns or billing information. 

Then I go further to identify the pattern of the hackers’ activities. This might offer a clue that will prevent a future attack. 

Letting Your Audience Know 

I’d write a post that: 

• Admits the hack Details the rectification measures

• Assures followers about their data

• Requests to report in case of any doubt

I would keep it light but sincere. Maybe throw in a joke about hackers needing better hobbies.  

I’d also make sure to promptly respond to comments and messages. That shows you are on top of things and care about your audience’s concerns. 

Hackers have been evolving, but so are our defenses. Being alert and proactive can save the day for your online identity. Watch out for red flags. 

Key steps to make your page secure include: 

Periodically update passwords with strong, unique combinations. 

Switch on two-factor authentication. This adds a layer of security and makes it really very much harder to get around. It is not impossible to get around, but two-factor authentication seriously undermines the chances of falling victim to attack. 

Monitor Page Activity: Always be vigilant about any suspicious activity on your page, and take corrective measures if there is any deviation. 

Review Page Roles and Permissions: Ensure that the page is only accessed by trusted persons and always review the permissions. 

If the unimaginable happens and you get hacked, don’t freak out. Follow the tips in this guide to get back in control and secure your page. Always communicate honestly to maintain the trust and support of your fans. 

If you are on LinkedIn and would like to keep yourself updated on the happenings of Cyber Security, then view and follow the profile of eMazzanti CEO Carl Mazzanti.