Instagram Denies Breach After Suspicious Password Reset Requests
Instagram has reassured its users that despite some receiving suspicious password reset requests, the platform has not been breached.
This statement contradicts a recent post from antivirus software company Malwarebytes on Bluesky, which shared a screenshot of an email from Instagram alerting users of a password reset request. The post claimed that cybercriminals had stolen sensitive information from 17.5 million Instagram accounts, including usernames, addresses, phone numbers, and email addresses.
According to Malwarebytes, this data is now being sold on the dark web and could be exploited by cybercriminals.
In response to these claims, Instagram released a statement on X (not on Instagram or Threads) stating that they had resolved an issue that allowed an external party to request password reset emails for some users.
While Instagram did not disclose further details about the external party or the specific issue, they advised users to ignore any suspicious emails and apologized for any confusion caused.
