Fraudulent messaging, sometimes referred to as phishing, is a common method attackers use to trick and scam others into giving up their personal information such as passwords, credit card numbers, social security number, or other sensitive data. Fraudulent messages can be sent through an email, SMS (text message), in-app message, or messaging apps.
What to do if you think you've received a phishing message
It's important to remember that scammers may try to trick you into sharing your personal information, usually by email or through an in-app message.
In general, if you see or receive a suspicious message, email, video, or link, don't open it and report it to us immediately. Keep in mind:
• Any legitimate message from TikTok won't ask you for personal information, such as your name, contact details, or password.
• Always verify any links sent to you before you open them.
• Never trust any third-party websites that promise to give away free likes, fans, crowns, Coins, or other incentives, as they may be able to access your login information.
However, we may reach out to you directly if you encounter the following:
Issues with TikTok features
• If your account was impacted while using certain features on TikTok, such as recharging your Coins, our Support team may send you an inbox notification in the app.
• You can verify it's from us if a pop-up displays at the bottom of the message that requires you to accept the request.
• Depending on the feature, you may be asked to submit documents for identity and bank verification purposes to resolve your issue.
Government, Politician, and Political Party Account (GPPPA) verification
• If you have a GPPPA, we may send you an email if you submitted a verified badge application or have yet to submit one.
• You can verify the email is from us if the sender has an @tiktok.com email address.
• In some cases, you may be asked to confirm or update your account details.
Remember to handle your account carefully if the above messages aren't sent to you through our official route.
What to do if you think your account has been compromised
If you believe that your account has been compromised, you should report it to us right away. You can also take a few steps to better secure your account:
Change your password
• If you think your account may have been compromised, change your password as soon as possible. Choose a password that’s memorable for you but difficult for others to guess.
• Learn how to reset your TikTok password.
Turn on 2-step verification
• 2-step verification adds an extra layer of security to your account in case your password is compromised. It also helps protect your account from unrecognized and unauthorized devices or third-party applications.
• Learn how to turn on 2-step verification.
Check devices where you're logged in
• You can view phones and other devices that are currently using or have recently accessed your TikTok account.
• Learn how to check your devices from your settings.
Check your security alerts
Our teams monitor for suspicious or unauthorized activity. You can keep track of recent unusual security events that you don't recognize.
To review your alerts:
1. In the TikTok app, tap Profile at the bottom.
2. Tap the Menu ☰ button at the top, then select Settings and privacy.
3. Tap Security & permissions.
4. Tap Security alerts.
To learn more about privacy and security on TikTok, visit our Safety Center.