Season 122 - Are you ready?

[Tactician]

Based on the messages shown in the pictures, assuming that those emails are genuine notifications from facebook (not scam emails), it seems that the hacker has access to at least one of the recovery options you have set on this facebook account. Those are usually an email address and/or a mobile phone number. If he was able to reset your password successfully and login, he probably has access to either your email inbox and/or your sms inbox because he got the specific code or link neccessary to reset the password.

So, first thing to do is to change the password of your email account linked to your facebook account from another device or PC (just in case the exploit is on usual device), then go to facebook and request a new reset (if you cannot login), and then reset your facebook account password. Take into consideration that you can also recover your account if it has been hijacked or stolen by using support services provided by the company. Also, remove any unwanted recovery options (phone numbers, email addresses, family, friends) and apps that the hacker could have added on your facebook account as fast as possible because he might attempt to use those to re-access your account again.
Secondly, after checking that you are in control of your accounts, change the email address linked to your facebook account to a new one which you have not been sharing around so that the email address cannot be used again by the hacker for attempted logins or password reset requests.

Next is to find out how he got hold of password(s)?
(1) Did you logged into this facebook and/or email account using a public or shared device, or did you input login info on a page (including pop-up windows from apps) other that what you usually go to? Keep into consideration that a way to get someones confidential information is to trick this person to input this info into a deceiving form.

(2) Are your devices free from malicious software?

(3) Is your facebook account clean?

(4) Did you typed, saved or shared your email address and/or password anywhere recently?

Most important is cut the hacker off as fast possible from further access to any of your personal things and make sure that anything that contains your banking information or linked to your bank and credit card accounts are secured.