Instagram says that though some customers acquired suspicious-looking password reset requests, it has not been breached.
That seemingly contradicts a Friday Bluesky post from antivirus software program firm Malwarebytes, which shared a screenshot of an e mail from Instagram informing customers of a request to reset their password. The submit claimed, “Cybercriminals stole the delicate info of 17.5 million Instagram accounts, together with usernames, bodily addresses, cellphone numbers, e mail addresses, and extra.”
This knowledge, Malwarebytes added, “is accessible on the market on the darkish net and may be abused by cybercriminals.”
Nonetheless, Instagram subsequently posted (on X, relatively than Instagram or Threads) that it had “fastened a difficulty that permit an exterior get together request password reset emails for some folks.”
The corporate didn’t supply any particulars in regards to the exterior get together or the precise subject, however its submit concluded, “You may ignore these emails — sorry for any confusion.”
