The biggest social media network Facebook has a huge impact on lives of online consumers and these days the Facebook account or profile is very important in many ways. From basic communicating, keeping updated with friends, families, news and social status as well. There are many types of people, creeps, enemies and strangers outside who want to hack your account and get information, blackmail you, defame you or just have fun. Regardless of the motive the tension that a owner gets is massive.
We have worked with many of such people but never got into any case because most of them went to police or didn’t care. Facebook can cause serious troubles sometimes and according to Cyber crime investigation department of Nepal Police, crime related to Facebook profile is one of biggest cyber crime in Nepal. Be careful because the illegal works which include defaming, blackmailing, extortion and information stealing etc have high penalties.
This started when my relative got their Facebook profile hacked and it was a great headache to prevent the information stealing in time. I was having nightmares about the defame, blackmailing and every other things. It is always told that people should be away from Police, Hospital and Court so I thought lets try to focus on recovering the hacked Facebook account by own. Lets break down the analysis and investigation into parts so that we can learn it easily.
Hacking and Possible Cause
Website hacking include SQL injection, brute force attack for login pages and some people can steal information including credentials over unprotected web transfers which don’t have secure protocol. These tech giants have (https) instead of (http) which is hyper text transfer protocol secure. They use SSL certificate which is insured of protecting the information exchange between server and client. They have heavily armed protection so the Brute force isn’t easy unless you are another tech giant that have good surveillance authority and power. What is Brute Force Attack? It is a type of attack where computer tries to crack the system password by trying and matching every possible keywords like alphabets, numbers and special characters. This can take very huge time regarding the password length and computers power. This is actually not possible by normal hackers.
Then comes Phishing which is the most famous way to exploit someone’s credential. It is actually using a fake page that resembles the look of original website. When the user inserts their login information their password and username are captures. This is why everyone should be really careful while using someone else’s computer, mobile and public computers at Cyber Cafe.
Keylogging is the method of targeting a users login info using spy software. They are actually virus and can see what you are doing. If you are careful you can prevent them. These malware spread though software, web pages, downloads, cracks etc. These techniques also include taking advantage of such venerable people by using phishing, scams etc.
In our view Social Engineering is the most sophisticated way to get someone’s credential because it is psychological manipulation which is done to trick someone. These people get confidence, study people and get the password username. For example someone is die hard fan of a football club and a player it has higher change that the user will have password related to those two objects. Hackers try the possible keywords around those objects and get their way in.
Prevention and Rapid Response
Once you know you have been hacked because you can’t login something fishy is going around. You will have to think of all the factors. As most of the hacking is trust breaking which includes phishing, keylogging and people sniffing up the cookies and saved passwords. It is very essential that you stop using old device that you were using because that might be infected so we recommend resetting phone, formatting your computer for the best. Tro to lo in from a new device which means a device that wasn’t used regularly before for using Facebook.
Once your account is hacked the first thing culprit does is changing the password and phone number associated with it and sometimes email as well. If the email is intact even not you can request a password reset for the account and gain access but the main problem we see every time is people don’t have access to the email account as well.
If this is the case then go to (www.facebook.com/hacked) then try to log in and it will say that your password was changed few days or weeks ago which is true because the criminal did it.
Now as obvious you didn’t made the change click on the given link and you are given two option which is to reset the password and lock the account.
Apparently most people can’t rest the account because they down’t have access so click on “Lock my account”, this will totally lock down the account and not you nor even the hacker can open the account because it is now pending verification. After locking you should try resetting the account and select that you have no access to the old email address than create a new email address with solid password.
Select the new email address for recovering the profile and you will be provided with a form where you should prove your true identity. The first thing you need is your Name, Date of birth and Facebook profile or timeline URL for example (www.facebook.com/deltadigitofficial). They will ask you to upload a Government issued ID like citizenship, drivers license, Passport etc. If you don’t have government document you can upload two ID card which match with the user’s name, DOB and matching picture. The details are available at their help site.
Proof and Advice
The name on ID, photos, DOB need to match with the information on profile so always be careful while putting information of you profile. Always use authentic name, DOB, profile pictures that is in ID cards. As you are the owner of your profile and have all legitimate documents you can easily get back your account and the hacker can’t.
Never ever click on suspicious links that someone has sen’t. They are mostly spam, phishing sites and key logging malware. Many of our colleges have been affected by these things from time to time. Always open links from trusted and authentic site, Facebook pages for information. Use antivirus in computer and clean your history, browsing data and cookies regularly. Be very careful while opening your accounts from public place like Cyber, pubic network or WiFi as well. These networks are vulnerable and may be spy networks too.
Be very careful while installing and downloading new apps, read the reviews, find the number of users and check credibility of developer. Use different password for different service and keep them safe by making them strong with use of all types of alphanumeric characters as possible, longer the better. Always share things carefully with people because you don’t now what they want and you truly don’t even know them as well. If things go out of hand and the hackers start defaming, blackmailing you than contact police because they can track IP address, triangulate the cell phone and catch the culprit. Have a happy and safe browsing experience.