So, I opened my email and there was a notification from Facebook. It said that someone had opened my ten-year-old Facebook page. At the beginning of Facebook if you forgot your password, you couldn’t get back into your account. I had created another account. A few years later Facebook asked me if I wanted two accounts and gave me the ability to close one. I was smart, I had used two different emails to open them, so I knew which one it was.
I thought maybe this happened after I had tried getting on Facebook during a period when they were down. Either way, it said click here if I was not the one who had done this. Of course, I clicked, and it took me to a page that said it couldn’t pull up that account. Then it asked me to check in to Facebook with my regular account.
Thinking that doing this would bring me to the original notification, I did. Except it only took me to my current account. In fact, nowhere could I find this notification. Nor could I find anywhere that I could contact Facebook. I did spend an hour chasing my question and reading a lot of self-help for navigating Facebook. Finally, I found an obscure area where you can inform Facebook of a problem. Which I did. And got a polite canned ‘thank you’ for my input.
I’m very suspicious of anything like this because I have encountered many a ‘phishing’ scam. At this point I was worried it was a trap to get my real Facebook information. I waited two days to hear anything back. Then I decided if Facebook wasn’t going to do anything, I would. So, I began to think like a hacker.
I knew where they got my old email. It had been hacked some years back when my phone apps had been open when I crossed into Mexico. A few password changes fixed things, but someone had gotten some old information. Experian had informed me last year that some of my personal information was on the dark web.
While thinking like a hacker, I knew that if they truly had re-opened my account on Facebook, all I really needed to know was what email they used. I went to Facebook and simply told it I had forgotten my password. A few minutes later my new password was verified. Sure enough, there was a new page under my old name. I had re-married since then and it wasn’t my new married name.
So, I had some fun.
I noticed first off there was no picture of me in the banner. They had filched an old picture of my granddaughter on a show horse, and it was in the timeline. It had been put up the day the Facebook had notified me. Also, interestingly enough, only five of my friends were listed there. The ones I had had ten years ago when supposedly Facebook deleted the account. To protect them, I went and unfriended them. Then I noticed I had thirty-one new friends who had suspiciously sounding Russian names. No joke. So, I unfriended all of them!
Next, I checked for personal information. Again, nothing current. It was a bare-bones account. Like they were still building it and adding to it. I wiped it all clean. And I changed the name of the account to my deceased husband. He had never been a computer person and never had an account on Facebook. He would have found it extremely funny. Just for fun, I also changed the password! To something like “Satan Be Gone”. If they were ever able to crack it, they would get the hint. But I highly suspect if they are serious about trying to use it again, they would just do what I had done and request a new password.
Then I went and deleted the account all over again. Not sure if that will help, since Facebook gives you thirty days before they supposedly permanently delete it. This is so you can get pictures and information off it. And remember, they said they had deleted it once before!
In all my research I couldn’t find anything the hacker had put out there yet on this account. But hopefully, I messed things up well enough they know I’m on to them.
This taught me several things. You can’t contact Facebook directly, period. It is all canned response and content. And all it takes is someone knowing what email you use to be able to get into your Facebook account. Since Facebook makes it so easy to get in when you forget a password, a hacker can easily make a dummy account. Also, nothing, and I mean nothing, is safe on the Internet. You may have security and firewalls, but note how easy it was for me to think like a hacker and find a way in. Last but not least, it proves that nothing is ever non-retrievable on the web. Even old, outdated or deleted material can be resurrected.
My biggest mistake in all of this was assuming that the notification was really from Facebook. Even though it was my email, it was not addressed directly to me. When Facebook sends me notifications about my changing my password, they always include my name. That wasn’t in the message I received and so I’m still not sure if Facebook sent it or what the hackers were after exactly. I did change my passwords for all my email and Internet accounts just for added protection.
I just hope sharing my experience can be of help to someone. Be careful out there in cyber space.