1. Smart Password Management
Creating a strong, unique password is perhaps the first step towards securing your Facebook account. Even so, some experts believe it’s important to update your social media passwords regularly to keep hackers at bay. As a result, you should know how to change your Facebook password.
PC
Mobile
You can change your password even when you’re not logged in to your account. You’ll need to access the Facebook Accounts Page and use your email or mobile number to identify your account. Once your account is located, you can have Facebook send you the code to reset your password via your Google account.
Additional Safety Tips
Making sure your password information isn’t readily available to third-parties is also an important part in securing your Facebook. To this end, it’s recommended that you don’t use your Facebook password anywhere else online or share it with other people. Make your password something hard to guess, so don’t include things like your name, date of birth or other common information. Moreover, if you are known for keeping records of your passwords, take precautions and store them in a safe folder on your PC or notebook that is kept in a private place to avoid others stumbling on this information. Saving your passwords in an encrypted password manager is of course ideal. Beyond fears of curious individuals finding or guessing your password, users also have phishing scams to worry about. To this end, you should never ever share your login information – be it with other people directly or with websites asking you to log in with your email and password via email or other types of communications. To avoid scams, always check the website’s URL before you enter your login information. Legit emails coming from Facebook concerning your account always come from fb.com, facebook.com or facebookmail.com.
2. Set Up Two-Factor Authentication
Two-factor authentication (2FA) is a security measure that adds an additional layer of protection to your account, so even if someone knows your password, they still won’t be able to get into your Facebook account, unless they are able to provide a second identity verification. This usually comes in the form of a code that gets sent to your mobile phone via an SMS or an authenticator app such as Google Authenticator. When it comes to Facebook, you have not one but three options when it comes to adding an extra security method when you log in to your account. Here’s how to enable two-factor authentication (2FA) for your Facebook account.
Desktop
To enable 2FA via Facebook on your computer, follow these steps:
Authorized Logins
Facebook keeps track of your logins and keeps a list of where you’ve logged in the most. The app recognizes these logins as safe, but you may not agree. You’re encouraged to check out this list and decide whether certain devices/browsers should be included. This is an important security aspect you should not overlook, as Facebook allows you to log in to these devices without a code. Here’s how to view the list:
Mobile
On mobile, the process of enabling two-factor authentication is relatively similar. Again, make sure you have an authenticator app installed on your device before you start the process to ensure it unfolds as smoothly as possible. If you change your mind about 2FA later on, you can easily disable the feature by following the steps described above to turn it off.
Authorized Logins
3. Use a One-time Password to Login
When it comes to logins, Facebook puts another security option at your disposal. You can login in to your Facebook account using a one-time password. It’s possible to use this option anytime you don’t feel comfortable logging in with your real credentials, such as in a public space like a library, hotel, etc. Note that this option will not work if you have two-factor authentication enabled. Moreover, you will need to have set up “Facebook texts” prior to attempting this by going to “Settings -> Mobile” and adding your phone.
Desktop & Mobile
4. Set Up Alerts for Unauthorized Logins
Even with 2FA authentication enabled for your account, you may still feel an additional layer of security is needed. If that’s the case, know that you can opt to add login alerts. These will let you know when someone tries to log in from an unrecognized device or web browser by providing you with info about the device that tried logging in and its location. Follow the below instructions turn on alerts for your account.
Desktop
When login alerts start pouring in, Facebook will ask you to approve each login activity by clicking or tapping on “This was me.” If you don’t recognize the activity, then click on “This wasn’t me,” and Facebook will help you reset your password and secure your account.
Mobile
That’s it. Facebook will send you an alert every time you or someone else tries to log in from an unrecognized device or browser.
5. Look for Suspicious Devices
In correlation with setting up login alerts, you should be aware of which devices and browsers you use. Facebook will send you alerts containing information, such as the device’s name and location. Keeping track of all the devices you’ve recently use to log in may help you uncover any suspicious activity. You can-cross check your recollections with Facebook’s list that records where you’ve logged in. Here’s how to access it:
Desktop
Mobile
- You can also swipe down all the way to the bottom and press on “Log out of all sessions.”
6. Monitor Linked Apps and Websites
Many apps and websites give you the option to log in with your Facebook credentials. While this may seem tempting due to convenience, we strongly advise against it, as we often tend to forget to revoke Facebook access once the permissions have been granted. If you’ve done so in the past, don’t worry, as you can remove access from these apps now. We show you how below.
Desktop
Mobile
7. Install an Extension/Add-on
Browser extensions or add-ons can also help with ramping up your Facebook security, such as Firefox’s Facebook Container add-on, which basically isolates your Facebook identity from the rest of the Web. With the extension onboard, Facebook cookies and site data that help identify “you” will be available only in that Container, and only the social site can be opened in that Container. This means you won’t be tempted to log in with your Facebook credentials anymore, and your Facebook login information will be confined to the specific container. Chrome users that are worried about phishing attacks can give the J2TEAM Security extension a try. Once installed, the extension will block fake Facebook login pages, thus preventing you from falling victim to scams. It also includes a “Facebook security tester” feature, which shows you your account’s vulnerabilities and provides you with direct links to resolve unsafe situations.
8. Do a Quick Security Check
If you don’t want to install an extension, Facebook can perform its own security check. From “Security and Login” (or “Password and Security if you’re on mobile), click “Check Important Security Settings,” and Facebook will show you how to keep your account secure and alert you of any possible issues. It’s a simple way to know if you’ve taken the right steps to secure your account and takes mere seconds.
1. Does Facebook use secure browsing (HTTPS)?
The answer is yes, and you don’t have to do anything to enable it. Facebook uses HTTPS to automatically encrypt your connection when you use the service. This protects your account from malicious parties. A secure connection is a requirement for connecting to Facebook and can’t be turned off.
2. I don’t recognize a location in the “Where You’re Logged In” section. What now?
If you see a location you don’t recognize, don’t panic. First, check if it’s related to the mobile device that you usually use to browse Facebook. Do note that often when signing in via a mobile device, you’re routed through an IP address that does not reflect your current location. If you don’t recognize the mobile device either, it could be that you left yourself logged in on someone else’s mobile device. If that’s the case, consider logging yourself out remotely. The other option is that an unauthorized party has somehow managed to gain access to your account. If you think that might be the case, log yourself out from that particular device first, then secure your account by changing the password.
3. How can I avoid getting locked out of my Facebook account?
You can set up a list of trusted contacts (three to five friends), who, in case of emergency, can help you if you ever have trouble accessing your account. They will be able to send a code and URL from Facebook to help you log back in. You can create this list by going to “Security and Login” (or “Password and Security” if you’re on mobile) and tapping on the “Choose 3-5 friends to contact if you get locked out” option under the “Setting up Extra Security” section. From there press on the “Choose friends” button. Image credit: Freepik