Over the weekend something funny happened. Not funny as in ha-ha, funny as in, oh sh*t. A huge company, Domino’s started running ads that were completely unrelated to their brand. It’s easy to think that someone cloned their account and was simply running ads. That wasn’t the case. If you clicked on the Domino’s Pizza name it brought you directly to the verified corporate brand page. OOPS. This could not possibly be good. It’s hard to know exactly WHAT happened but you can bet that security or lack thereof probably had its hand in it. So it’s time for a checkup on your settings.

Here’s an example of the Domino’s Pizza ad that was running. Clearly not the right brand/ad combo.

There are two options for what could have happened on their account.

  • Whoever runs their ads messed up like crazy.

or the more likely scenario

  • Whoever runs their ad account got hacked.

It seems like a good time to go over best practices for keeping your account secure. In all instances, on every platform that allows it, you should have two-factor authentication installed. Whether it’s for personal or company logins, make sure it is done. It protects you personally, protects your brand, protects a clients brand and it gives you the ability to feel just a little bit safer in a world that is constantly getting hacked.

Best Practice for FB Business manager

Go to Business Settings.
Go to Business Security Center.
Make sure account security has two-factor authentication set up.

I have my FB Business Manager account set up so it’s required for everyone that has access to use two-factor authentication but you can set it so it’s required only for the administrator if you desire. I wouldn’t recommend it though.

You can also make sure to use a code generator which is a special login code to authenticate a new phone or computer.

Recovery codes are a great option if you don’t have your phone with you.

Pro tips: If managing a Business account:

  1. Make sure admins are active
  2. Double check the two-factor authentication is required for everyone, not just admins
  3. Make sure employees are active.

How to set up two-factor authentication on your personal FB page

Setting up two-factor authentication on your personal FB page is also pretty simple.

In the top right corner use the drop down menu by selecting the downward arrow.

Select security and privacy on the left hand side.

Always check to see where you are logged in. I like to check this in case it shows me as logged in someplace that I wasn’t before. Go through and check where you’re logged in. If you see someplace you don’t recognize click the three little dots on the right and click “log out”. This will get you logged out. It might be a good idea to check any other websites that have the same password or may be connected through the FB app. If there’s an unrecognized login, it’s one of two things:

  1. Your memory is failing you
  2. You got hacked

Now would be a great time to change your password. I have my password saved on my computer and browser because everything I have is super locked down but this DOES put me at a security risk. If you use a company owned computer or there’s a chance that someone else may use your computer, I highly recommend not saving your login info.

Next, make sure that two-factor authentication is turned on!

Under authorized logins you can see what devices and other apps may have access to login with your account. If an app has access and it was given over a year or so ago, I recommend checking to see if it’s something you still use. If not, go ahead and remove it by selecting the box to the left and then clicking remove at the bottom.

Set up extra security for yourself by getting alerts about unrecognied logins so that if something does happen, you know as soon as possible. This helps to lock them out of other areas ony our profile.

For precaution, you can choose up to 5 friends to contact if you get locked out. FB sends your contacts a code and URL from FB to help you get back in. Only add contacts that you would trust with your credit card or identity. I say that because if someone hacks into your account they have the potential to access all of these things. It’s important to trust whomever you have added to your account if you get locked out.

Instagram two-factor authentication

Checking on your security on instagram is pretty much exactly the same on a business account vs. a personal account.

If you’re on the mobile app, click the three lines in the top right corner. At the very bottom click on the wheel that says settings.

After you click settings click on security.

There you will be given a screen that has password, login activity, saved login info, two-factor authentication.

It’s always a good idea to click on login activity to see if there’s anything suspicious going on. It not only tells you your location but also what device. You have the option to logout of the location or keep yourself logged in. If you find yourself having to logout, it is probably time to update your password.

Clicking two-factor authentication will give you the option to setup or maintain this extra security step. Here, you can add a phone number, use an authentication app and also setup recovery codes. If you don’t have this set-up, you should. On instagram, if you manage one or more accounts, you must set up each individual account to have these settings.

In case you’re wondering, an authentication app generates security codes for signing on to sites like Instagram! These are great for people who travel a lot as you mostly don’t need the internet to get the codes.

Twitter two-factor authentication

If you’re wondering if twitter has some security measures; you are absolutely right.

If you’re logged into Twitter on your computer, click on the top right corner with your logo on it. You should get to a screen that looks like this.

Click “account”. Go to Login verification. If you don’t already have your safety in place your screen should look like this.

  • Once you click start you’ll need to verify your password for the account.
  • Add a phone number
  • You will get a verification code
  • Plug it in.
  • Now, when you log in to twitter they will ask for a login code!
  • Woo-hoo, two-factor authentication is set-up!
  • You can also get a backup code in case you lose your device.

If you’re one of those who loses their phone every other month; it’s probably a good idea to get a backup code and put it somewhere safe. It gives you an option to print your code if you’d like. Each code can only be used once.

In the same place under security, Twitter also allows you to check something that requires personal information to reset your password. For added security, this requires you to confirm your email or phone number while resetting your password.

Selecting this is just another opportunity to keep your accounts safe and locked down.

Pinterest two-factor authentication

The security options on pinterest are simple.

  • Go to the top right corner of your account and select the three little dots.
  • Select security.
  • Make sure to select two-factor authentication.
  • You will then be asked to put in your phone number so they have a place to text login security codes.
  • Pinterest will send a code to your phone number to complete verification.
  • Pinterest will automatically give you a backup code so again – make sure to have that put in a safe place! Remember to keep them someplace that you won’t lose them but can still use them if you’re not at home.

Just like on other platforms, it’s recommended to check connected devices and make sure that everything is on the up and up.

LinkedIn Two-Factor Authentication

Linkedin also has a two-factor authentication! It’s super easy peasy.

  • Login to your account.
  • In the top right corner where your photo is, click settings and privacy.
  • Select the account tab.
  • Go to two-step verification.
  • Make sure it’s set to on, if it’s not, click it and select it to on.
  • Put in your phone number
  • Linkedin will send you a confirmation code.
  • Plug it back in and you’re golden!!

It’s so easy.

LinkedIn will also tell you when the last time you changed your PW is (if it’s been a while, always good to change it up). Like other platforms, LinkedIn will also tell you where you’re logged in and sign you out if you want.

Google two-factor authentication

Google. They know 2-step verification is a thing. They know we need it. So they have created an incredible landing page dedicated to telling us all how to add 2-step verification to their products. You can read all about Google 2-step verification here. There’s no reason for me to repeat what they’ve laid out so nicely for you.

Using two-factor authentication is recommended for all platforms but particularly Instagram. Instagram is notorious for getting hacked and people having an impossible time getting anything back. One way to avoid this is to ensure that whatever email you use for your Instagram account (or any account) ALSO has two-factor authentication set-up. Two-factor authentication on social platforms does no good if your email also gets hacked.

It’s easier than you think for someone to steal your password. Especially if you use the same password on more than one site.

Do yourself and your clients a favor and protect your accounts simply by remembering to:

  • Diversify your passwords
  • Use two-factor authentication on every platform that allows it
  • Check your most recent login credentials
  • Update your passwords on a yearly basis.

This is one of many reasons I recommend clients use a platform like LastPass to create unique, one-of-a-kind passwords for all their sites. This helps to prevent hacks.

The process to set-up two-factor authentication takes only a few minutes on each platform but it’s well worth the time to set it up on all of your favorite platforms.

Danie Schwartz Consulting is a full-service creative consulting firm, specializing in storytelling via copywriting, social media, and other visual arts. A perfect blend of creativity, energy, communication, brand, and strategy; we’re ready to bring your brand to the next level. 

If you need help on social media security best practices or trainings for your employees; your staff or just in need of social media guidance. Danie Schwartz Consulting can help.

We’d love to connect with you, call us at (530) 636-0193 or email info@danieschwartz.com today! or Schedule a FREE consultation today!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.