Beware of nasty Facebook recovery code email scam that will steal your info
Matthew Perez
Published Apr 03, 2026
A nasty scam email is circling that looks like it’s from Facebook and tells you to enter a recovery code to get into your account.
If you receive an email like this, do not click on it as it is a phishing scam in which attackers are trying to steal your personal information.
Facebook recovery code email scam circles
The scam is an email that appears to be from Facebook, but it’s not. It’s usually from the email address: [email protected].
“We received a request to reset your Facebook password. Enter the following password reset code,” it says.
After showing the recovery code, it asks you to click on a button that says ‘change password’ to gain access to your account.
However, the whole thing is fake. Your social media account hasn’t been compromised and doesn’t need recovering.
receive multiple ones, sometimes 2 or 3 a day. Just delete them, your account is fine and doesn't need to be recovered. Its just another hack going around.
— Christopher Bowers (@CSB_22) July 22, 2023
Do not click on the phishing email
If you receive an email like this, do not click on the ‘change password’ link as it is a trick designed to fool you into revealing information.
It’s called phishing, which is the process of sending fraudulent messages that look like they’re from reputable companies to deceive people.
Individuals are told to click on a link which will usually take them to a screen where they enter personal details like passwords and credit card information.
The scammers intend to use this information for their own gain, scamming you out of money or hacking your social media accounts.
It comes as a fake rumor that Facebook is going to start charging users $4.99 a month to use the site is also circling – but it’s not true.
How to check if an email is from Facebook
If you’re not sure whether an email is actually from Facebook, you can check in the settings.
- Open the Facebook app.
- Click on Menu.
- Select the Settings cog.
- Tap Accounts Centre.
- Press Password and Security.
- Scroll down to Recent Emails.
- Click on your Facebook account.
Here, you will be shown all the emails Facebook has sent you. If the email isn’t there, you can assume it’s a scam.
If you receive a fraud email, click on the email address and tap ‘block’. Then, delete the email. Now that person will not be able to contact you again.
