How can advertisers protect the security of Meta assets?Here are some suggestions based on our experience. Please read them carefully:
1. Use the purchased FB personal account with caution. All previous records of the purchased assets must be cleared!
– The password of the purchased account must be changed and the two-factor verification of the email address must be turned on (you can use another personal email address to receive the verification code, or you can try turning on Google Authenticator). When changing your password, remember to select Exit at another location.
– Confirm whether the personal account is bound to other backup email addresses and whether the currently bound email address is safe. You can view all contact information bound to your account through the following link:
https://accountscenter.facebook.com/personal_info/contact_points
– Check the devices that have been logged in with your account through the following link, and log out of all devices that are not in use:
https://accountscenter.facebook.com/password_and_security/login_activity
2. Regularly check the permissions of personnel within the BM
– Remove all the people in the purchased BM first. Don’t forget to remove the System User – System User cannot be deleted. We need to delete the token that was generated by the system user.
– Be careful with hidden admins! Check out BM’s full list of People and make sure the total number below is the same as your current list total. If it is different, for example, like the picture below, 7 people are displayed in the list, and the total number of people is 8. It means there is a hidden administrator in BM. How to remove it? You can Google the relevant plug-ins.

– It is also essential to remove resigned personnel promptly. Confirm your email address to prevent theft from changing it to the same name and pretending to be an employee account. The employee’s account only retains permissions for the assets that need to be used, so don’t be afraid of trouble!
3.Clean up ad accounts and fanpage administrators who are not in BM promptly
For example, if you open a personal account, it will be directly bound to the advertising account, so you must pay special attention to the personal account you buy. Admins who are not in BM from advertising accounts and fanpages need to be removed promptly, and all permissions should be assigned from BM as much as possible.
4. The ad has been modified by Meta and may be stolen!
Some people feel relieved when they see that the advertisement has been modified but the operator is meta. Please be aware that Meta will not help us create/modify advertisements! If the operator is not in the current bm, it will be directly displayed as meta due to privacy reasons, so please be careful!
5. Pay attention to unfamiliar pixels bound to your account
According to experience, because pirates will disguise the advertisements as having the same name as the original advertisements or directly modify them, many customers, especially those with a large number of advertisements, will find it difficult to distinguish them. We can also pay attention to the pixels bound to the account. Once unfamiliar pixels appear we must be cautious.
6. Do not leave a balance in accounts that are not used for a long time.
Check the set account limit. For accounts that have not been used for a long time, clear the balance and adjust the limit to 0.01.
7. Don’t click on strange links
You have to believe that Meta will generally not send you messages through Messenger to ask you to deal with violations. If there are any violations, it may be blocked directly. So when you receive meta messenger messages or emails, be sure to identify them carefully.
8. Google account stolen, be careful about password security
There is also a very roundabout way for personal accounts to be stolen because the password saved by the Google account is leaked. Change your Google account password promptly and regularly, and eliminate other login devices.