Can a Facebook quiz or game hack my account?
Quizzes and games that request Facebook login permissions can harvest your personal data. Some are also fronts for phishing credential theft.
Last reviewed: 1 June 2026
Explanation
Facebook quizzes and 'personality games' requesting broad permissions to your account data are a well-documented privacy risk. When you 'Sign in with Facebook' or grant an app permission, you may hand over your name, email, friend list, photos, and more to a third party whose privacy practices are unknown. Some apps sell this data; others use it for targeted phishing or to build social engineering profiles. A separate attack uses quiz-style posts ('What is your mother's maiden name? What was your first pet?') to harvest common security question answers without ever requesting account access. Be extremely selective with any app or quiz that requests Facebook permissions, and regularly audit your connected apps in Facebook settings.
Common red flags
- App requests broad permissions such as access to your friends list or messages
- Quiz asks questions that match common bank security questions
- Third-party site offers to show 'who viewed your profile' in exchange for login access
- App was created recently with few reviews
What to do now
- Review and revoke app permissions in Facebook Settings under Apps and Websites
- Change your Facebook password if you granted broad permissions to an unfamiliar app
- Enable two-factor authentication on your Facebook account
- Be cautious of posts asking personal trivia that matches security questions
Frequently asked questions
Are all Facebook quizzes dangerous?
Not all are malicious, but any quiz or game requesting Facebook login permissions poses a data privacy risk. The safest approach is to not grant permissions and play only quizzes that require no login.