Instagram has moved to reassure its users by denying reports that the data of over 17 million users was compromised. The concern arose after many users received unexpected password reset emails. Previously, cybersecurity company Malwarebytes stated that leaked information included usernames, addresses, phone numbers, and emails from 17.5 million Instagram accounts. The firm warned that this data was being sold on the dark web for potential misuse.
In response, Instagram clarified that there was no breach of their systems. They acknowledged an issue that allowed an external party to request password reset emails for some users but assured users that their accounts were secure. The platform advised users to disregard the emails and apologized for any confusion.
Despite Instagram’s statement, users remained skeptical about the situation. Some questioned how an external party could trigger a password reset, expressing concerns about account security. Instagram provided recommendations to enhance account security, such as enabling two-factor authentication using WhatsApp or an authenticator app like Duo Mobile or Google Authentication. Users were also advised to ensure their contact information is up to date for account recovery purposes in case of unauthorized changes.
In light of the incident, Instagram emphasized the importance of taking proactive measures to protect user accounts and prevent unauthorized access.