Have you been hacked?
A horrifying aspect of Alice's ex-boyfriend's controlling behaviour was to hack into her social media accounts so that he could keep track of what she was doing and saying to her friends.
What should you do if you think your phone might have been hacked? We've put together a few guidelines here.
How can they hack you?
There are several different ways:
- If you've logged into an account on a device they own and forgotten to log out
- If you've logged into an account on a device they own and you've since changed your password but you haven't told the application to log out all devices currently logged in
- If you've told them your password / your password is easy to guess / your password is the same for lots of other things and they've found it out / your password is written down somewhere
- If they've put some spy software on your device which records everything you type and this is used to capture passwords
- In very rare cases professional hackers, security people (MI5, MI6, GCHQ, or advanced coders) can hack into your devices or the servers hosting these applications
What should you do?
- Contact the police
- Make sure the App (Facebook, WhatsApp etc) is up to date (this removes security vulnerabilities): iPhone App Store updates; Android Play Store Updates
- Make sure the operating system of your device is up to date (this removes security vulnerabilities): iPhone, Android
- Ensure your device has a passcode (and make sure no one else knows it and it’s not easy to guess): iPhone, Android
- Ensure your device auto locks after a minute or two (this can seem like a pain but it helps secure your device): iPhone, Android.
- Always lock your device if you leave it somewhere
- If someone has had access to your device:
- Enable 2-step (sometimes called 2-factor) authentication. This means having a trusted device such as a Mobile, Tablet or PC which will get a code when a new device tries to log in for the first time: WhatsApp 2-step verification; Facebook 2-factor authentication
- Change your password every month AND log out of all devices (see above). Choose a different messaging tool (for example: Telegram; Signal; ChatSecure; Wickr Me; Silence; SilentPhone) and don't advertise the fact widely
- If you are still really worried, buy another phone (like a pay-as-you-go) and do not share the number widely. Create a new account (WhatsApp for example) and message on a totally different account and phone.