TikTok Hacked Account Follower Impersonation Scam
After taking over a TikTok account, fraudsters use it to DM the victim's followers with investment pitches, emergency money requests, or fake giveaways, exploiting the trust built up by the original creator.
Part of: Hacked Friend Impersonation Scams
Last reviewed: 7 June 2026
A TikTok creator builds an audience over months or years, and that audience trusts the creator's voice, recommendations, and content. When an attacker seizes control of a TikTok account, they inherit that trust along with access to the account's followers, direct message history, and creator monetisation features.
The consequences reach beyond the creator who lost access: every follower who receives a message from the hijacked account is a potential victim of whatever scam the attacker is running. Investment fraud, fake cryptocurrency platforms, and money-for-emergency schemes are the most common payloads.
TikTok's direct messaging feature and the 'link in bio' allow attackers to push followers toward external scam websites using the credibility of the creator's established account.
How this scam works on the TikTok brand
After gaining control of a popular TikTok account, attackers change the bio link to a scam website and may upload a short video using the creator's style and branding to announce a 'giveaway' or 'exclusive investment opportunity'. Because the account has existing followers who recognise the creator, the video or bio change may be accepted without question.
In the direct message phase, attackers message high-value followers — those with their own following or visible engagement — with personalised pitches. The messages may reference past interactions visible in the message history to add authenticity: 'Hey, remember when we collaborated on that video? I found this amazing platform that has changed my life.'
Some attacks unfold over days, with the hijacked account posting normal-seeming content to avoid detection while quietly redirecting followers to a fraudulent external site through the bio link or video call-to-action.
Common red flags
- A creator whose content you know suddenly posts about an investment platform or financial opportunity
- A DM from a creator you follow uses language or topics inconsistent with their usual style
- The creator's bio link changed suddenly to an unfamiliar website
- A message offers you exclusive investment returns or a giveaway requiring an upfront payment
- The 'creator' cannot respond coherently to personal questions that the real person would know
- Followers of the account are posting confused comments about unusual recent posts or messages
How to protect yourself
- Enable TikTok's two-step verification to protect your account from being hijacked and used this way
- Treat any investment promotion from a TikTok account with high scepticism, even from trusted creators
- Verify any unusual message from a creator you follow through their other social channels before acting
- Report suspicious content from a potentially hijacked account using TikTok's in-app 'Report' feature
- Never click bio links or video links promoting investment or financial products without independent verification
How to report it
- Report the suspicious content or account within TikTok using the 'Report' feature on the video or profile
- If you believe a creator's account was hijacked, try to reach them through another platform to alert them
- Report investment fraud to the FTC at reportfraud.ftc.gov (US) or Action Fraud actionfraud.police.uk (UK)
- Report crypto or investment fraud to your national financial regulator
Frequently asked questions
How can I tell if a TikTok account I follow has been hijacked?
Look for sudden changes in content style, topics, or language. Check whether the bio link changed unexpectedly. See if followers are posting concerned comments. The most reliable check is to reach the creator through a different platform — if they confirm nothing changed, you are seeing the real account.
What should a creator do if their TikTok account is hijacked?
Attempt to reset the password through the official TikTok login page. If the recovery email was changed, contact TikTok Support at support.tiktok.com immediately. Notify your followers through other social channels so they know messages from your TikTok may be fraudulent. File a report with TikTok and your local consumer protection agency.
I followed a bio link from a hijacked TikTok and entered my details. What now?
If you entered financial details, contact your bank immediately. If you entered login credentials for another service, change those passwords now. Run a security check on your own accounts. Report the scam website to Google Safe Browsing and your national consumer protection agency.