Facebook CEO Mark Zuckerberg’s rarely used social media accounts LinkedIn, Twitter and Pinterest, were briefly taken over on Sunday by a hacker group called Ourmine.
Ourmine even tweeted Zuckerberg about the alleged hacks and advised him to get in touch with them.
"Hey @finkd we got access to your Twitter & Instagram & Pinterest, we are just testing your security, please dm us," the now-deleted tweet, which was screengrabbed by Engadget, read.
Despite the group’s claims of hacking his Instagram account, which Facebook also owns, it was safe all along because of the social media site and photo-sharing service’s security systems.
Some reports suggest that the tech billionaire’s usernames and passwords could have been stolen from a leak of 117 million LinkedIn accounts in 2012 which are being sold on the dark web for 5 bitcoins, or about $2,300 (P105,949).
Zuckerberg apparently used his LinkedIn password “dadada” for his multiple social media accounts, NBC News reported.
"You were in Linkedin Database with the password 'dadada'!" Ourmine tweeted from Zuckerberg's Twitter page.
The said tweet has also been deleted and OurMine's main Twitter account has been suspended.
Here are five tips for social media users to avoid getting hacked like Zuckerberg.
1. Create unique and complex passwords.
The more complicated and lengthy a password is, the harder it will be for hackers to guess. This matters especially with accounts in social networks, online shopping, online banking, email and other services with sensitive data.
Personal details like birthdays and words that are commonly found in dictionaries are not advisable as it can be quickly guessed with just a scroll down to one’s social media accounts.
2. Do not allow your browser to store login information of any website, especially those with sensitive data.
Accounts, especially those with sensitive data should be protected from possible hacking incidents and this step will help prevent that from happening.
3. Do not reuse passwords.
This is a simple advice that the Facebook CEO did not take heed of: Avoid using the same password for multiple sites, so that one data leak cannot lead hackers to other accounts with sensitive data.
4. Turn on the Multi-factor authentication (MFA) on accounts that offer that option.
Multi-factor authentication allows users to enter a second form of identification, like a code texted to their phones that will provide additional protection to an account.
Twitter, Facebook, Dropbox, and Google are some of the social networking sites that offer this feature.
Some online banks also offer email notifications and verification processes that further protect their clients’ accounts.
5. Use password managers.
Password managing apps make things easier for users by remembering complex passwords. LastPass is one of the password managing apps that will advice users to change their password if some suspicious activity is observed.
According to PCMag.com, these are the best password managers for 2016.
- Dashlane 4
- Zoho Vault
- LastPass 4.0 Premium
- Sticky Password Premium
- RoboForm Everywhere 7
- Keeper Password Manager & Digital Vault 8
Also, if you are like Zuckerberg who hasn’t been active with his other social media accounts, it will be better to simply say goodbye to accounts that have been lying dormant for a while.