- Refrain from responding to unsolicited communications, and exercise caution with communications from known senders.
- If unsure of the legitimacy, contact the sender via a separate means of communication – such as by phone through official and legitimate sources – before taking action or disclosing sensitive information.
- Set up alerts to receive account activity notifications.
- Use strong, unique passwords, and enable MFA, choosing biometrics and authentication apps over SMS text-based codes where available.
- Review Facebook’s Keeping Your Account Secure and Hacked and Impersonation Accounts webpages.
- Review the Guide to Accessing Facebook’s Security & Privacy Settings NJCCIC Technical Guide to help prevent account compromise and the unintended sharing of sensitive information.
- Refrain from posting sensitive information and images online to reduce your digital footprint.
- If victimized, report the scam to your local law enforcement department, the FTC, the FBI’s IC3, and the NJCCIC.
- Review the Identity Theft and Compromised PII NJCCIC Informational Report for additional recommendations and resources, including credit freezes and enabling MFA on accounts.
