No one escapes the risk, general users as well as corporates can be victims of hancking, according to IT security firm Sophos. Sophos has revealed that the threat is more for corporates and says that once the creator of the page appoints an administrator for their page, this person has the rights to to remove the admin privileges of the creator of the Page.
What this could mean is that, the original creator of the Facebook page will loose all his admin rights due to the lack of clarity on the part of Facbook on who they grant the access to. The new administrator can thereby take full control of the page. FB's own help page states, "the original creator of the Page may never be removed by other Page admins." Sophos however agrees to this clause.
Graham Cluley, senior technology consultant at Sophos has been quoted as saying, "There are two issues here. Even if a trusted friend or colleague is working as an administrator on a Facebook Page, it is possible that their account may be compromised, giving the bad guys a chance to hijack the Facebook Page you've created."
He added, "The other possibility is that the Page founder grants a stranger admin rights to the Page. While this might not sound like the best idea, there are several services, such as Fiverr, where you can find plenty of people offering to help you to maximise the success of your Facebook Page."
Cluley further states, "If you give a cut-price 'social media expert' admin rights to your Facebook Page, you really only have yourself to blame if you're ousted. However, the question is - why can't Facebook do what its help pages say it will do - either block attempts to remove the original admin, or send a request to the original admin asking if they agree to be removed from their administrator role. That would surely help prevent hijacks like this taking place."