Ask HN: How to recover a pro photographer’s hacked Meta accounts
A friend who has been on Facebook and Instagram for very many years had both accounts hacked and can’t recover them. He’s given up. How is it possible we can’t fix this issue in 2022?
This is a pro photographer who adds value to the platforms he participates in. Daily contributions, of high quality, no political or other hysteria, exactly the participant Meta should work hard to keep, ruined because the systems we build failed him.
His story here: https://www.gerryleroux.com/blog/new-beginning
He’s basically bailing on Meta and now moving to other avenues. I can’t imagine how annoyed he must be after 13 years of building a network. Surely this is fixable? What can we do for cases like this?
7 comments
[ 3.1 ms ] story [ 19.8 ms ] threadYour friend is either misunderstanding something or hasn't relayed the story accurately enough to receive support.
The system to be fixed includes getting the right information to (potentially unsophisticated) users and having enough triggers to prevent this, especially for accounts with many years of activity.
The default outcome should be that account theft and deletion is impossible, especially for a 13 year old account with photos of the photographer and likely geo points all over it. It’s a short video call to confirm who the account really belongs to.
Your friend needs to fill out this form: https://www.facebook.com/help/contact/260749603972907
It is not practical for FaceBook to have a video call with you every time your password is changed or you login with a new IP.
Consider teaching your friend how to use a password manager and randomly generated passwords, and telling them to enable 2FA.
Your account is only as secure as your password, and I can basically guarantee your friends account was taken over because of password reuse or phishing, both of which a password manager can curtail
I’m advising him on recovery attempts but he’s away at a shoot until the 17th, which is a month after the hack. Let’s see if he can sort it.
I think someone got an old email that was linked to his account. Instagram seems to have a fair approach here that does include some face video:
“If you request support for an account with photos of you, you'll be asked to take a video selfie of you turning your head in different directions to help us check that you're a real person and confirm your identity.”
https://help.instagram.com/368191326593075
Facebook has a similar policy as well to gain access to an account (For Facebook, you have to show them a copy of your government ID).
The problem is, if the attacker had access to the recovery email, they don't have to go through Facebook support. That's the point of the recovery email: to recover your account if you get locked out, access to it is taken as proof you are you.
Also, it's possible your friend just forgot to mention it, but they _don't_ mention needing to reset their password after the attacker got in. If that's the case, that means the attacker got in with their password - i.e. they know the password.
If they can try to login with their password and get "account disabled" (rather than "incorrect password"), and they didn't change it as part of attempting to recover their account, then they should assume that password is burned and need to change every account that uses it ASAP (and stop reusing passwords ;) )
He is also a photographer. He couldn't get in touch with a human unfortunately.