Prevent Your Facebook and Instagram Accounts from Being Hacked: Essential Tips

digital marekting tech Feb 11, 2025
Padlock on a computer keyboard

In today’s digital age, social media platforms like Facebook and Instagram have become integral parts of our lives. They allow us to connect with friends, share experiences, and promote businesses. However, the increased use of these platforms also brings about a higher risk of hacking.

To protect your accounts and personal information, it’s essential to implement robust security measures. Especially if you have spent years building up thousands of followers and an engaged community that supports your business.

Here are some effective ways to prevent your Facebook and Instagram accounts from being hacked.

 

1. Enable Two-Factor Authentication (2FA) For Facebook & Instagram

Two-Factor Authentication (2FA), also known as Two-Step Verification (2SV), is a crucial security feature that adds an extra layer of protection to your Facebook and Instagram accounts.

Even if someone gets hold of your password, whether through a data breach, phishing attempt or weak security practices, 2FA ensures they still can’t access your account without an additional verification step.

When you enable 2FA, you’ll receive a notification with a special login code that you will be required to enter when trying to access your account from an unrecognised device or browser.

This double-check process confirms that it's really you attempting to log in, significantly reducing the risk of hackers gaining control.

Cybercriminals often exploit stolen passwords, especially if they’re reused across multiple accounts. But with 2FA in place, even a compromised password isn’t enough for them to break in. Setting it up takes just a couple of minutes, but the added security can prevent account takeovers, protect sensitive data, and help you avoid the stress of losing access to your accounts.

 

What happens when I set up two-factor authentication?

After you have set up two-factor authentication, if someone tries to login to your Facebook or Instagram account from an unrecognisable device or browser, you will be promoted for a code. This will be accessed by one of the following ways depending on how you set up two-factor authentication:

  • Text message (SMS) to your mobile phone
  • An authentication app such as Google Authenticator or Microsoft Authenticator. Once set up the app will generate codes whether you have internet or not. You can then use the same app to generate codes for different accounts. 
  • Physical security key

 You'll need to have at least one of these set up in order to use two-factor authentication.

 

Why is Two-Factor Authentication Necessary for Facebook and Instagram?

  • Enhanced Security: 2FA significantly increases your account security. Even if someone gets hold of your password, they won't be able to access your account without the second factor.

  • Protection Against Hacking: Hackers often use phishing attacks or malware to steal passwords. 2FA provides an additional barrier, making it much harder for hackers to gain access to your accounts.

  • Peace of Mind: Knowing that your accounts are protected by 2FA gives you peace of mind. It helps ensure that your personal information, photos, and private messages remain safe.

 

How To Set Up Two-Factor Authentication On Facebook

1. From your Facebook home page on desktop, click on your profile image, top right of the screen. Click on Settings & privacy > Privacy Centre.
  


2. Click on Privacy Centre > How To Keep Your Account Secure > Privacy Checkup and follow on-screen instructions.



On mobile tap your profile picture, bottom right > gear icon top right > Privacy Checkup.

 

How To Set Up Two-Factor Authentication On Instagram (mobile app)

  1. From the home screen tab, tap on your profile icon in the bottom right
     
  2. Tap on the burger bar menu (three horizontal lines) in the top right

  3. Tap Accounts Centre > Password and security > Two-factor authentication and follow on-screen prompts.

Once finished you will get an on-screen prompt saying that two-factor authentication is on. You need to do two-factor authentication for each individual Instagram account you manage.

Watch my Instagram Reel on how to set up Two-Factor Authentication for Instagram ⬇️

 

 

2. Save Recovery Codes / Backup Codes

As part of the two-factor authentication process, you’ll be given the option to download recovery codes. This is especially useful if you lose your phone or can’t receive a verification code via text message or an authentication app.

Take a screenshot of them and save them somewhere safe so they can be easily accessed if you need them.

3. Use Strong, Unique Passwords

Avoid using common passwords or the same password to access your social media accounts. Create strong passwords that combine upper and lower-case letters, numbers, and special characters.

Tips for Creating Strong Passwords:

  • Use at least 12 characters.
  • Avoid easily guessable information such as birthdays, pet names, common words or 12345.
  • Consider using a password manager to generate and store complex passwords securely, like LastPass.
  • Avoid re-using the same password for different accounts

  • It’s OK to write down your passwords but keep them somewhere safe, and out of sight

  • Most web browsers will offer to save your passwords for you. It’s safe for you to do this (unless you’re using a shared computer outside your home, for instance at a college or library)

 

4. Set up 2FA On Your Main Email Account

This is very important because criminals with access to your inbox can use it to reset passwords on other accounts, like your Facebook and Instagram accounts and send emails pretending to be you.

Make sure the email address registered with Facebook and Instagram are an email address you can access. Sometimes they may send the 2FA verification code to this email address. Take care using your work email as when you leave or retire, you will lose access to this account.

Where to find the email address registered with Facebook and Instagram:

  • Facebook: Login to your personal profile (desktop: icon of you top right; mobile: icon of you bottom right) > Settings & Privacy > Settings > Meta Accounts Centre > Personal Details
  • Instagram: Profile page > triple lines top right > Account Centre > Account Settings > Personal Details


5. Be Cautious with Links and Messages

Phishing attacks are common methods hackers use to gain access to your accounts. Be wary of suspicious links or messages, even if they appear to come from friends or trusted sources.

How to Identify Phishing Attempts:

  • Look for unusual language or requests.
  • Check the sender’s email address or profile for authenticity. 
  • Avoid clicking on links or downloading attachments from unknown sources.


6. Regularly Update Your Software

Ensure your devices and apps are up-to-date with the latest security patches. Developers frequently release updates to fix vulnerabilities that hackers might exploit.

Steps to Update Software:

  • Enable automatic updates on your devices.
  • Manually check for updates in the settings of your social media apps or devices.

 

7. Monitor Account Activity

Regularly review your account activity to identify any unauthorized access. Both Facebook and Instagram provide tools to help you monitor your login history.

As part of the two-factor authentication set-up process, you can set up trusted devices and alerts to notify you if someone logs in to your account from a place Meta does not recognise. They'll tell you which device was used and where it's located, either by Facebook notifications or email.

8. Limit Third-Party App Access

Third-party apps that have access to your Facebook and Instagram accounts can be a security risk. Regularly review and limit these permissions.

How to Manage Third-Party Access:

  • Facebook: Go to Settings & Privacy > Your Activity > Apps and Websites and review the active apps.
  • Instagram: Go to Settings > Your app and media > Security > Website Permissions > Apps and Websites and review the active apps.


9. Educate Yourself on Security Best Practices

Staying informed about the latest security threats and best practices is crucial in keeping your accounts safe. Follow trusted sources for updates on cyber security.

Recommended Resources:

Security Of Your Social Media Accounts Is An Ongoing Process

By implementing these security measures, you can significantly reduce the risk of your Facebook and Instagram accounts being hacked. Remember, maintaining the security of your social media accounts is an ongoing process that requires vigilance and proactive measures. Stay safe online and enjoy the benefits of social media without compromising your personal information or your business.

  

Join My Mailing List

Join my mailing list for no nonsense digital marketing tips, find out about new services and get special discounts.

Yes! Sign Me Up