Protect yourself from phishing on Facebook

You can take steps to protect yourself from phishing scams on Facebook.
Find what to do if you think you've been phished.
About phishing
Phishing is when someone tries to get access to your Facebook account by sending you a suspicious message or link that asks for your personal information. If they get into your account, they may use your account to send spam.
Example of phishing
Joey gets an email that says he needs to log into his Facebook account to read an important message about his account. The email links to a website that isn't a Facebook website. Then he's asked to enter his username and password.
How to identify suspicous emails or messages
If you can recognize suspicous messages or emails, then you may be able to avoid phishing scams
Don't trust messages that:
  • Demand money
  • Offer gifts
  • Threaten to delete or ban your Facebook account
Emails about your account always come from:
You can always visit or open your Facebook app to check for important messages from us.
Don't click suspicious links
If you get a suspicious email or message claiming to be from Facebook, then don't click any links or attachments.
Don't respond to these emails
Don't answer messages that ask for your:
  • Password
  • Social security number
  • Credit card information
Get alerts
Get alerts about unrecognized logins and turn on two-factor authentication to increase your account security.
Was this helpful?