Some Facebook users have started getting spammy-looking emails about turning something called Facebook Protect on. The emails have a link to enable the setting; and a warning that they will be locked out of their account if they refuse.
It seems like a phishing email, but it isn’t. Facebook really does want these people to turn on its advanced Protect feature.
Those accounts are designated as “high-risk” for things like account takeovers. Many of the emails have been sent out to journalists, activists, and politicians, but they will all benefit from the additional security measures.
It first requires you to turn on two-factor authentication for your account. This could be via a third-party authentication app, or a hardware-based solution like a YubiKey.
The second part is some behind-the-scenes threat detection by Facebook. It flags any issues early, so Facebook’s security teams can respond if someone is trying to compromise your account.
Currently, it seems Facebook Protect notices are going out to journalists and activists. Meta says they plan to expand the program throughout the year, so maybe everyone on Facebook will have a chance of enrolling at some point.
While Facebook Protect is a good step in the right direction, Meta does need to work on the implementation.
Having users click on a link in an email to join up looks like a phishing attempt; especially if it doesn’t come after any sort of details about the program. The on-platform notifications are better, as at least you know those come from Facebook.
Have any thoughts on this? Let us know down below in the comments or carry the discussion over to our Twitter or Facebook.