Instagram has moved to calm its users by refuting claims that the data of over 17 million users was compromised. Reports surfaced on January 10 that account information was leaked online, leading to many users receiving unexpected password reset emails.
Previously, cybersecurity company Malwarebytes alleged that the leaked data contained usernames, physical addresses, phone numbers, and email addresses of 17.5 million Instagram accounts. The firm cautioned that this information was being sold on the dark web for potential misuse by cybercriminals.
In contrast, Instagram stated that there was no breach of its systems. In a message on X, Instagram explained that they had addressed an issue that allowed a third party to request password reset emails for certain users. The platform assured users that their accounts were secure and advised them to disregard the reset emails.
Despite Instagram’s reassurances, many users remained skeptical about how an external party could trigger password resets without compromising security. Some users expressed concerns that this incident seemed like a breach, prompting them to take additional security measures themselves.
Instagram recommended several steps to enhance account security, including enabling two-factor authentication using a phone number or authenticator app. Users were also advised to ensure that their contact information on the platform was up to date for easier account recovery in case of unauthorized changes.
In efforts to maintain account security, Instagram emphasized the importance of enabling two-factor authentication and keeping contact details current. By taking these precautions, users can better protect their accounts from potential security threats.