What you need to know about Facebook Pages – Canadian Government Executive

NEWS

SEARCH

HR
Best PracticeE-governmentICTSecurity
May 25, 2017

What you need to know about Facebook Pages

Facebook Pages can be an essential tool for businesses and charities, making it possible to connect with almost 2 billion active Facebook users. But there is a downside: It is very easy to for a Page to be hijacked.

Each Facebook Page is managed by one or more administrator. The user creating the page becomes the first administrator, and may grant other users one of six roles: Admin, Editor, Moderator, Advertiser, Analyst, and Live Contributor. Admins can perform all functions. Editors can perform every function except managing page roles and settings. Other roles have fewer privileges.

Many organizations choose to have more than one administrator. If one leaves or is unavailable, another can maintain the page. In-house, contracted, and volunteer designers also may require admin rights to update some page settings. Unfortunately, Facebook allows any Page administrator to remove all other administrators. A rogue admin, or hacked admin account, can result in the organization being locked out of their Facebook Page.

Last week, Sit With Me, an Ottawa-based dog rescue, faced exactly that scenario. “Our Facebook Page is our number one communication tool,” explained board member Ashley Ladouceur. The volunteer-operated all-breed dog rescue has about 16,000 likes on their Facebook Page, where it posts information including dogs available for adoption. These are often shared, providing the group with an even larger reach. According to Ladouceur, Sit With Me often meets urgent fundraising requirements within days of posting a request for assistance on their Page.

On May 11 or 12, 2017, the Facebook and email account of a Sit With Me volunteer with admin on the Page was compromised. On the May 14, all the other administrators were removed, presumably by the intruder. As the victim worked to regain access to her email and Facebook account, her Facebook account was either deleted or otherwise deactivated. The delay suggests that Sit With Me was not the intended target, but that hasn’t helped them regain control of their Facebook Page.

According to Ladouceur, the group has been able to ascertain from Facebook that there are no administrators remaining on the Page. They were still trying to make contact with someone at Facebook to help them when their Page completely disappeared on the evening of May 21.

The group remains hopeful that Facebook will come through for them and restore access to their Facebook Page. “Without it, I don’t know how we would re-start,” Ladouceur said. Sit With Me averages between 85 and 120 dogs in their care, some of whom require expensive medical attention.

Sit With Me is not the first organization to face a hostile takeover of their Facebook Page. As is the case with many free services, very limited assistance is available. Facebook’s help page suggests the obvious:

“If you can’t access your Page, first check to see if another admin of the Page may have removed you. The best thing you can do is contact a Page admin and ask them to add you back. Keep in mind that there are different kinds of Page roles, and only admins can add or remove people.

Pages can only be accessed through a personal account that belongs to an admin. If you think your Page was taken over by someone else, it may mean that your personal account or the account of someone who works on your Page was hacked.”

Unfortunately, Facebook doesn’t directly address the concerns of an organization that has completely lost control of their Page. They should introduce enhanced controls, such as requiring multiple administrators to approve removing an administrator, and provide better security guidance in general. Until that happens, here is what Facebook Page owners can do to help protect themselves against Page hijacking:

Everyone with a role on the page needs to secure their Facebook account. That includes selecting a long, complex password that is used only for Facebook and turning on two-factor authentication (2FA). Facebook’s 2FA options are more limited than other sites, but they do support Fido U2F tokens and sending a 6-digit code via SMS. While not perfect, enabling these options provide significantly better security than a password alone.

The Facebook Page Admin role should only be granted when absolutely necessary. If a web designer requires Admin access to change page settings, it should only be provided for a limited time. The vast majority of tasks can be accomplished using the Editor role.

Facebook password resets leverage the user’s primary email account, making security of the email account critical. Google and Microsoft offer 2FA for free and paid email accounts; everyone should use it.

Facebook did not respond to an email inquiry asking for information and advice for Facebook Page users.

 

About this author

Eric Jacksch

Eric Jacksch

Eric Jacksch is a leading cybersecurity analyst with over 20 years of practical security experience. He has consulted to some of the world's largest banks, governments, automakers, insurance companies and postal organizations. Eric is a regular columnist for IT in Canada and was a regular columnist for Monitor Magazine and has contributed to several other publications.

0 comments

There are no comments for this post yet.

Be the first to comment. Click here.

Best Practice
 
Canadian Government Executive Media (CGE) is pleased to announce its first batch...
 
In today’s workplace, individuals increasingly face dynamic and difficult challenges that...
 
Canadian Government Executive Media (CGE) is pleased to welcome Microsoft as its Platinum Sponsor for...
 
In a rather unusual, quiet manner this past summer, a new...
 
Canadian government agencies and departments are modernizing the way they do...
 
The health care system in Canada, known as Medicare, is publicly...
 
We are happy to share with you the May/June issue of...
 
Facebook Pages can be an essential tool for businesses and charities,...
 
In this special episode of CGE Radio, your host John Jones...
 
The North Atlantic Treaty Organization, with its 28 independent member countries...
 
Cost overruns have become institutionalized in the federal government, according to...
 
Last year, procurement Minister Jody Foote was prompted by the swirling...
 
The rapid advances in digital technology, demographic and societal shift even...
 
Results Washington is Washington state government’s data-driven performance management and continuous...
 
Rules and accountability are helpful in developing and standardizing processes but...
 
Ontario’s provincial government needs to act fast in building a coordinated...
 
It’s a common notion that young workers born in the mid-1990s...
 
Please to view this Content. (Not a member? Join Today! )...
 
Please to view this Content. (Not a member? Join Today! )...
 
Please to view this Content. (Not a member? Join Today! )...
 
Please to view this Content. (Not a member? Join Today! )...
 
There’s a fine line between confidence and naivety – a line...
 
Please to view this Content. (Not a member? Join Today! )...
 
As populations grow and age, the demand for services increases. As...
 
By Nicole Verkindt Despite growing up in a small town in...
 
As much a 20 per cent of grade seven students in...
 
By Jason Zhang  The best way to cost effectively manage the retention...
 
He is often referred to as the federal government’s first “chief...
 
Are you absolutely clear what the government wants to achieve? Are...
 
Please to view this Content. (Not a member? Join Today! )...
 
Here’s some bad news for organizations contemplating projects that have something...
 
Nearly half of Canadian organizations are falling behind on implementation of...
 
The idea of converged infrastructure and converged systems in the datacentre...
 
Please to view this Content. (Not a member? Join Today! )...
 
There is no shortage of examples of businesses that effectively used...
 
Microsoft, on Tuesday, ended support for older versions of Internet Explorer...
 
Written by Tim Wacker Almost a quarter century ago, when most...
 
Written By Chris Brown To deliver results that senior executives value,...
 
Written By Jason McNaught Contrary to what you may have heard,...
 
Written by  Benjamin Selinger and Gabriel Flores A real challenge for...
 
Written by  Patrice Dutil It’s hard to believe we are still...
 
Written by  Patrice Dutil Craig Dowden, President and Founder of Craig...
 
Written by  Brady G. Wilson You may not realize it, but...
 
Written by  Roxanne Descôteaux When I first became a manager over...
 
The good news is that the Government of Canada recognizes the...
 
You sometimes wonder why government can’t be better at just getting...
 
Hill+Knowlton Canada announced last week that it has received the prestigious...
 
I’ve been giving 110 percent for as long as I can...
 
The National Voluntary Standard for psychological health and safety in the...
 
The government of Alberta has banded together with British Columbia and...
 
When we put out the call to cities across Canada for...
 
BC Hydro was experiencing ongoing challenges with IT assets decommissioned as...
 
City councils are important. They not only represent citizens at the...
 
Business continuity management has evolved into a specialized discipline, but you...
 
Saskatchewan’s Ministry of Health is leading a new approach to strategic...
 
Whether you have read John Kotter’s classic Leading Change or not,...
 
Energy, not time, is the fundamental currency of high performance. But...
 
Across the country, public sector leaders are challenged with the daunting...
 
When Neil Armstrong stepped onto the moon, it was government that...
 
Ego can do us in. It can lead to arrogance, blindness,...
 
and the more layers between a given employee and the relevant...
 
CGE Vol.14 No.2 February 2008 Management speaks of change in positive...
 
Innovation, leadership and a commitment to building a knowledge advantage are...
 
One of the most paradoxical Biblical parables, found the Gospel of...
 
CGE Vol.14 No.1 January 2008 “We’ve entered into an era in...
 
L’une des paraboles bibliques les plus paradoxales rapportées par Luc est...
 
Chris Baker is Deputy Minister, Policy and Priorities, and Deputy Minister,...
 
CGE Vol.14 No.2 February 2008 Often overworked and understaffed, the procurement...
 
Federal, provincial and municipal governments provide billions of dollars in grants...
 
During the American presidential election campaign of 1976, Jimmy Carter, then...
 
The Ontario Public Service celebrated ten years of hosting Showcase Ontario,...
 
Tell the truth. Deep down, do you sometimes – or often...
 
What if our general approach to brainstorming was all wrong? That...
 
Nearly two decades after I read Lincoln On Leadership, the messages...
 
True leaders are proactive. They get things done. They accomplish that...
 
Management and leadership are complicated. So it would be lovely if...
 
Government revolves around power. Political parties seek power. They implement their...
 
Managers generally walk around with a what’s-going-wrong mentality. They are fixated...
 
Government runs on expertise. Government executives seek the best knowledge and...
 
Let’s resume last month’s discussion on effective change initiatives with some...
 
When Ontario Premier Dalton McGuinty set as a prime goal of...
 
By now it’s commonplace knowledge that emotional intelligence is vital to...
 
Good leaders can make bad decisions. President Kennedy blundered over the...
 
The TRIC model of leadership is enshrined in the Ontario Public...
 
A respectful workplace is a critical ingredient of successful public service...
 
For the third year in a row, the Ontario Public Service...
 
Justice on Target (JOT) takes a unique and bold approach to...
 
Perched on top a 60 meter column in a bustling square...
 
For the second year in a row, the Ontario Public Service...
 
OTTAWA – Management consultants at Accenture, a respected longtime observer of...
 
La plupart des leaders reconnaissent d’emblée que leur efficacité dépend de...
 
Most leaders will readily agree that earning and keeping the trust...
 
Some title Some author
Some excerpt
Canadian Government Executive Media (CGE) is pleased to announce its first batch...

Member Login

Forgot Password?

Join Us

Password Reset
Please enter your e-mail address. You will receive a new password via e-mail.