Pages Menu
Categories Menu

Posted on Aug 2, 2021 in Blog, Uncategorized

Crime Victim

Crime Victim

Many of you may have wondered why my profile wasn’t on Facebook for most of July and why it looks different now. Long story short: I became a victim of a crime. A cyber-burglary, with my intellectual property and my network the target.

It began early in the morning on July 2, right before the July 4 holiday weekend. A common time for cybercriminals to strike, because companies and organization’s security staff are on vacation. Compared to the Kaseya ransomware attack later that day, my attack was small potatoes, but as I’ve visited message boards of other people who lost their Facebook accounts, I’ve come to realize that at least hundreds of them were attacked that same weekend. Since most people don’t seek help through message boards like Reddit or Quora, I can assume that the hundreds constitute a small fraction of the Facebook users who lost their accounts that weekend.

Facebook’s security folks were apparently hanging out in the donut shop.

Here’s what happened. At 4 am my time — but regular business hours in places where cybercrimes originate — I received a text to input a code to change my password. I didn’t think anything of it. I had two-factor authentication, which means that a criminal who somehow obtains my password can’t change it without access to my phone. But when I went to sign on to Facebook later that morning, I was told my password had been changed and I was using an old password. The hacker managed to intercept my (and many others’) two-factor codes that Facebook had sent that morning.

At that point, my husband could see my Facebook profile even though I’d been shut out. It hadn’t changed. No one posted disinformation, porn, or ads for sunglasses. When I reported my account to Facebook as stolen, Facebook removed it. Or maybe the hacker, finding nothing of long-term value, deleted it. Whatever the case, it was gone, and I couldn’t get it back.

I believed Facebook would investigate and return my account, since it was clearly mine, but in spite of multiple appeals to their help, customer service, and security links, I heard nothing. From the message boards, I learned that Facebook permanently deletes accounts after 30 days, but if I signed on again through a different email address, I could get my account back.

Since I was going on vacation for a couple of weeks in July, I decided I could wait. Nobody needed to know I’d gone on vacation. I wondered if I could live without Facebook. After all, the site has become a conduit for criminality — from election interference to public health disinformation, from cyberbullying to financial fraud. I’d already discovered that there is no security and no customer service. Why should Facebook invest in those things when they have 3 billion users already and make obscene amounts of money from selling users’ data and advertising packages. They are the definition of “too big to fail.” Nonetheless, going onto Facebook is like traveling to the Wild West (or wild Siberia) with no police force. The best way to stay safe is to have nothing worth taking.

My new start-over Facebook banner.

In the end, I decided to start over. It will take me months of effort to rebuild a fraction of the timeline and network I had before. Reports that I could get my old account back if I signed on with a new email address turned out to be false. In fact, I cannot even get my username back, so the link to my timeline is a string of random numbers that gives my profile a sketchy appearance from the get-go. I’ve appealed to Facebook the loss of my username and all its variations (with and without the hyphen, with numbers following) and hope that tiny piece of my old account will be restored.

It was difficult to write this post. Being a crime victim comes with a heavy dose of shame, which is why so many crime victims never report it or talk about it. My one contact with Facebook involved a lot of victim-blaming (“You bought a t-shirt and used the same password for that site” —  not true and that’s why I had two-factor authentication). Similarly, real-life crime victims hear anything from “You shouldn’t have worn that skimpy dress” and “You shouldn’t have had anything to drink” to “Why did you post those vacation pictures while you were still out of town?”

I wish I did have advice. I don’t know how the crime happened or why I was targeted. Even with a smaller and less valuable Facebook account, I don’t know how to prevent it from happening again. Although Facebook has been responsible for terrible things, I found a great deal of engagement on my own account, which is why I decided to start over. I do believe Facebook is a too-powerful monopoly that lacks the responsibility to hold so much power and should face consequences. In that respect, the only small part I can do is write this blog and write my legislators to support its regulation as a utility and/or its breakup.

8 Comments

  1. So very sorry to hear about this, Lyn! Agree w/you that Facebook does have far too much power for the level of responsibility it avoids exerting…

    • That is exactly what I’m going to put in my letter to my Senators and Representative. The rep is also chair of the committee that regulates Facebook.

  2. Awful, Lyn. But not unusual. Hackers got on my Zoom account and ran up bills of more than $800 for a webinar, audio conferences, and large meetings. (And as with you, this all happened on a single day, a Sunday, when I wasn’t home and Zoom personnel didn’t seem to be either!) It took me three months to get that money back, and I never want to endure a process like that again. Needless to say, I’ve quit my Zoom Pro account and am settling for plain old free Zoom!

    • I’m sorry that Zoom failed you and also seems to have so little security and customer service. I’ve heard about hackers exploiting holes in the software to break into events and abuse speakers and attendees, often with racist and profane language. My husband’s PayPal account was hacked to the tune of $750, but he was able to get the money back.

  3. I am so sorry to hear this, Lyn. Ugh. This happened to me about four years ago and it is NO FUN AT ALL. Good luck with rebuilding your account. And please know that none of this was your fault. Not in any way.

    • I think it happens to a lot of people at one point or another. Janie Emaus had a piece in Medium about her experience of losing her account in May. She was able to get it back, but it took two months.

  4. I’m so sorry this happened to you, Lyn. It’s upsetting to think that anyone could become a victim through no fault of their own.

    • Thank you, Tara. It wouldn’t have mattered if Facebook had put in a minimum of effort to fix what is in fact an easily fixable situation.

Leave a Reply to Lyn Miller-Lachmann Cancel reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.