Instagram has moved to calm its users by refuting claims that the data of over 17 million users was compromised. Reports emerged on January 10 that account information had been leaked online, leading to an influx of password reset emails.
Previously, cybersecurity company Malwarebytes alleged that the leaked data contained usernames, physical addresses, phone numbers, and email addresses of 17.5 million Instagram accounts. The firm cautioned that this information was being offered for sale on the dark web, posing a risk of exploitation by cybercriminals.
Contrary to these reports, Instagram stated that there was no breach of its systems. In a statement on Sunday morning, the platform explained that they had addressed an issue allowing an external party to request password reset emails for some users. Instagram assured users that their accounts were secure and advised them to disregard any such emails.
Despite Instagram’s reassurances, many users remained apprehensive about how an external party could trigger password reset requests. Some users expressed concerns that this incident could be interpreted as a breach, highlighting the need for improved security measures and transparency from Instagram.
In response to the situation, Instagram outlined several steps for users to enhance the security of their accounts. They recommended enabling two-factor authentication and updating contact information to facilitate account recovery in case of unauthorized access.
Overall, Instagram emphasized the importance of taking proactive measures to safeguard user accounts and mitigate potential security risks.