Hyderabad: Instagram users worldwide were left alarmed following reports of a major data leak involving the popular social media platform. According to a recent report by cyber security firm Malwarebytes, sensitive information of nearly 17.5 million users across the globe has allegedly been exposed, triggering widespread concern over account safety.
API Vulnerability Behind Data Exposure
Cyber experts clarified that the data was not stolen through direct hacking of Instagram’s servers but was collected by exploiting vulnerabilities in the platform’s Application Programming Interface (API). The leaked information is believed to have originated from an API-related exposure in 2024. Reports indicate that the compromised data is currently being traded on dark web platforms such as Breach Forums.
Sensitive User Information Compromised
Investigations revealed that the leaked data includes users’ full names, user IDs, email addresses, phone numbers, physical addresses and location details. Cyber security analysts warned that such sensitive information could be misused for identity theft, phishing attacks and targeted cyber frauds.
Password Reset Emails Trigger Panic
In recent days, millions of users have received unexpected Password Reset emails from Instagram’s official email address, despite not requesting any reset. Experts believe these messages are part of attempts by cyber criminals to exploit the leaked email IDs to gain unauthorised access to user accounts, adding to the anxiety among users.
Experts Urge Users to Stay Alert
Cyber security specialists have advised users to immediately change their Instagram passwords, enable two-factor authentication, avoid clicking on suspicious links and remove unnecessary third-party apps connected to their accounts. While Meta is yet to issue an official response, experts have urged users to remain vigilant and take preventive measures to safeguard their personal data.