If you suspect that your Facebook account has been compromised, it is recommended to change your password immediately. If you use Facebook app ink net to log in to apps such as Spotify or Instagram, change those logins as well. This will prevent the hacker from gaining access to these third-party services via your compromised Facebook account.
Hackers can discover many personal details in compromised Facebook accounts. Hackers can use this information for malicious purposes, like getting credit card numbers, and bombarding people with fake credit card offers or scams that involve phishing. Hackers can also use compromised accounts to send out spam messages or post on your timeline (as in the event that it was you who did it).
Hackers are most likely gain access to an account by exploiting a vulnerability in the Facebook app’s code. A bug in the iOS Facebook application allows hackers to steal cookies, and steal the “access token” of an iPhone user. These tokens are digital keys, grant them complete control over the user’s Facebook Account, as well as any other website they log into with their Facebook credentials.
Hackers also have the ability to gain access to accounts using brute-force attacks. This method involves figuring out a password, typically the most commonly used ones such as 123456789 or 1234567890. In addition, hackers could gain access to accounts by scanning for compromised credentials. There are several tools for free that can be used for scanning for stolen information, including a popular site called HaveIBeenPwned.