Last Updated 9 months by Emily Standley
With millions of people and businesses using social media these days, it has become a major target for hackers and cybercriminals. How many people do you know that have had their social media accounts hacked? Some of the reasons they want to compromise your account include reselling it on the dark web, collecting your private data, or sending spam to your followers. Here’s how you can prevent your social accounts from getting hacked.
- Use a Strong Password
- Keep your Password Protected
- Don’t Reuse Passwords
- Enable Two-Factor Authentication (2FA)
- Beware Phishing Emails
- Be Cautious With 3rd Party Apps
Use a Strong Social Media Password
First off, let’s talk about password strength.
If your password is something simple that can be guessed easily, then there’s a very high chance that you will be hacked.
Don’t use passwords like “123456”, “password123”, or your name or pet’s name followed by 123.
Instead, your password shouldn’t be a word at all—it should be a minimum of eight random characters that are a mixture of uppercase letters, lowercase letters, numbers, and special characters.
There should be no pattern to this, and it needs to be completely random.
Something like this: *&85Mi0!R2#
Keep Your Password Protected
We’ve all been stuck in ‘password hell’ trying to remember a password.
You might be amazed just how many people still keep their passwords listed in plain-text files on their computer or on their office desk using Post-It notes.
If you do this, then you are opening yourself up for people to get access to all your important accounts.
Also, be careful about sharing certain personal information on social media.
We have recently seen “cute” polls or threads that encourage you to share something like a memory of the street you grew up on or your first pet.
These are often the same as your security questions for your password to be reset.
If you share this information online, someone may be able to steal the info and use it to change your password and hack your account.
If you need to share your password with someone, we recommend using a tool such as PassEncrypt. This allows you to securely transfer sensitive text information.
Don’t Reuse Passwords
We know how tempting it is to use the same password for everything.
When you are creating a new account on a retailer’s website, do you use the same password as your Facebook or email account?
It doesn’t matter where you’re creating the account or which password you are reusing, the issue is that you are reusing a password. This will definitely put you at risk.
If that password was compromised on one site, it could affect any other accounts that you have used that password for.
Every online account that you created should have a different password.
Enable Two-Factor Authentication (2FA)
Another way to protect your account is with two-factor authentication (2FA).
This requires an extra step in the sign-in process to verify that you are indeed the user.
A typical two-factor authentication is to have you log in (first authentication) and then send an access code to your smartphone or your email that you have to enter to continue (second authentication).
Even if a hacker can steal your first level of security – your password – they typically won’t have access to your text messages to do the second level of security with the security code.
This can be added to most social media, including Facebook. In fact, Facebook or Meta is now requiring it.
Beware Phishing Emails
A very common method that hackers use to access accounts is through phishing.
Phishing is when someone sends a “fake” email pretending to be from a legitimate company in order to trick you into giving them your login credentials.
For example, you may receive an email with a link pretending to be from Instagram, when really it is from a fake website instead.
Clicking this fake link will take you to a page that is made to look like Instagram, for example, and it will prompt you to log in. When you enter your login information it will record this data.
At this point they have successfully tricked you into giving them your account details. They can then use that to gain access to your account.
To help prevent hacking on social media via phishing, we’ve listed out several steps that we recommend you take before clicking any links or entering any information.
- Check the sending email address. Sometimes it can display a name over the top of it (like Instagram) but when you click on the name, it will display a full email address that is very clearly fraudulent.
- What are you being asked to do in the email? If the message is asking you to login or “verify your account”, you can delete the message and know that it is very likely phishing.
Another type of email that can be an attempted phishing scam, are emails informing you that your account password has been changed or your account is suspended.
Check the address to make sure it is coming from the actual domain such as @instagram.com.
If you don’t feel comfortable, you can always go to the social media site and securely change your password.
Note: Most social media accounts will send an email after the account was created for verification. They can also send you an email for resetting your password.
For more detailed information, see this guide from Inmotionhosting Avoiding Phishing Scams.
Be Cautious With 3rd Party Apps
Just like you wouldn’t allow a total stranger into your house, you shouldn’t let unknown third-party apps have access to your social media.
This can include popular apps by other developers such as social media post schedulers for businesses.
Once you give them access to your account, you leave yourself open for them to take advantage of your trust.
Especially, if the app has been designed by a hacker or cyber criminal.
Millions of people in the United States have a social media account and that number has been steadily climbing over the past decade.
Businesses today as rely heavily on social media to stay connected with their audiences.
With all of that personal information floating around online, it should come as no surprise that hackers and thieves are targeting social media accounts.
Not only are social media accounts being targeted, but so are websites. So, be proactive in protecting your information from online phishing attempts.
Now you know some ways to prevent getting hacked on social media. Stay safe!