How to Close a Hacked Facebook Account: What You Need to Know
Discovering your Facebook account has been hacked is stressful — and the steps you take next depend heavily on your specific situation. Whether a hacker has simply accessed your account or fully locked you out, the process for closing or securing it differs in important ways.
What "Closing a Hacked Account" Actually Means
There's an important distinction worth making upfront: closing an account and securing a compromised account are two different actions with very different outcomes.
- Securing the account means recovering access, removing the hacker, and locking things down — the account continues to exist under your control.
- Closing (deactivating or deleting) the account means shutting it down permanently or temporarily — useful if you no longer want the account and want to prevent further misuse.
Most people who've been hacked actually want to recover their account, not delete it. But if recovery isn't possible, or if you simply want to shut the account down for good, Facebook provides specific pathways for both.
🔐 Step 1: Determine Whether You Still Have Access
Your options branch significantly based on whether the hacker has changed your login credentials.
If you can still log in: You're in a better position. Go to Settings & Privacy → Settings → Password and Security and:
- Change your password immediately to something strong and unique
- Review Where You're Logged In and log out of all unrecognized sessions
- Enable two-factor authentication (2FA) if it isn't already active
- Check Apps and Websites connected to your account and revoke anything suspicious
- Review your personal information (email, phone number, linked accounts) to confirm nothing was changed by the hacker
If you've been locked out: This is where recovery becomes more complex. Facebook's account recovery tools at facebook.com/hacked are the starting point. This page walks you through:
- Identifying how your account was compromised
- Recovering access via a trusted email address or phone number
- Submitting identity verification if your contact information was altered
What Happens If Recovery Fails
If a hacker has replaced your email and phone number and you can't pass identity verification, your options narrow. Facebook offers a video selfie verification in some regions as an alternative identity check. The process can take days and isn't guaranteed — the outcome often depends on how much verifiable account history you have and whether the account was associated with a legitimate identity.
If you cannot recover the account, you can report it as compromised using the Report a Compromised Account tool, even while logged out. This flags it to Facebook's Trust and Safety team, which may result in the account being temporarily locked until ownership is verified.
How to Delete or Deactivate the Account
Once you've regained access — or if you'd rather shut things down than fight for recovery — here's how each option works:
| Option | What It Does | Reversible? | Timeline |
|---|---|---|---|
| Deactivation | Hides your profile; data is preserved | Yes, any time | Immediate |
| Deletion | Permanently removes your account and data | No (after 30 days) | 30-day grace period |
To delete your account:
- Go to Settings & Privacy → Settings
- Select Your Facebook Information
- Click Deactivation and Deletion
- Choose Delete Account and follow the prompts
Facebook applies a 30-day waiting period before deletion is finalized. During this window, logging back in will cancel the deletion request. After 30 days, the account and its associated data — posts, messages, photos — are removed from Facebook's servers, though some information (like messages you sent to others) may persist in their inboxes.
🛡️ Protecting Linked Accounts After a Compromise
A hacked Facebook account can be a gateway to other platforms. If you've used "Log in with Facebook" on third-party apps or services, those connections may have been exposed. After addressing the Facebook account itself:
- Audit any app that used Facebook login and change credentials directly
- Monitor linked email accounts for unusual activity
- Consider whether your password was reused elsewhere — if so, update it across every affected service
Password reuse is one of the most common reasons a single breach cascades into multiple compromised accounts.
The Variables That Affect Your Outcome
The path forward isn't the same for everyone. Several factors shape which steps are available to you and how difficult the process will be:
- How long ago the hack occurred — the sooner you act, the more options are available
- Whether your contact info was changed — if the hacker altered your email or phone number, standard recovery tools may not work
- Your account's identity verification history — accounts with verified names and phone numbers have more recovery pathways
- Geographic region — some of Facebook's recovery tools (like video selfie verification) are only available in certain countries
- Whether the account is tied to a Facebook Page or Business Manager — business accounts have additional complexity, including admin hierarchies that may affect recovery
Some users recover access within minutes using automated tools. Others spend weeks navigating Facebook's support system with no guarantee of success. The difference usually comes down to how much verifiable information is still associated with the account — and how quickly the account was reported after the compromise.
How straightforward this process turns out to be depends on the specific state of your account and what the hacker changed before you took action. ⚠️