Instagram: A message from John Furrier, co-founder of SiliconANGLE:

**Instagram Denies Data Breach After Surge in Unsolicited Password Reset Emails**

Meta-owned Instagram has refuted claims of a data breach following reports that millions of users received unsolicited password reset emails. The company confirmed that an external party exploited a bug to trigger mass password reset requests but emphasized that no unauthorized access to user data or backend systems occurred.

The incident began when users reported receiving unexpected reset emails, sparking speculation of a large-scale breach. Cybersecurity researchers later claimed a dataset containing details of 17.5 million Instagram accounts including usernames, email addresses, phone numbers, and some location data was being sold on underground forums. However, Instagram stated the dataset likely stemmed from past scraping incidents rather than a new breach.

A Meta spokesperson clarified that the issue had been resolved, assuring users that their accounts remained secure. While no evidence of a system compromise was found, the company advised users to disregard the emails and avoid clicking suspicious links. Instagram is investigating the origin of the dataset but maintains that no new breach occurred.

Source: https://siliconangle.com/2026/01/11/instagram-denies-data-breach-password-reset-emails-spark-leak-claims/

Instagram cybersecurity rating report: https://www.rankiteo.com/company/instagram

"id": "INS1768202562",
"linkid": "instagram",
"type": "Vulnerability",
"date": "1/2026",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"

{'affected_entities': [{'customers_affected': '17.5 million accounts (alleged)',
                        'industry': 'Technology / Social Media',
                        'location': 'Global',
                        'name': 'Instagram (Meta Platforms Inc.)',
                        'size': 'Large (1B+ users)',
                        'type': 'Social Media Platform'}],
 'attack_vector': 'Abuse of password reset functionality',
 'customer_advisories': 'Disregard unsolicited password reset emails and '
                        'enable two-factor authentication.',
 'data_breach': {'number_of_records_exposed': '17.5 million (alleged)',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'Personally Identifiable Information '
                                        '(PII)',
                 'type_of_data_compromised': ['Usernames',
                                              'Email addresses',
                                              'Phone numbers',
                                              'Physical location details']},
 'description': 'Instagram experienced a surge in unsolicited password reset '
                'emails due to an external party abusing a bug, leading to '
                'claims of a data breach involving 17.5 million user accounts. '
                'Instagram denies any breach of its systems or unauthorized '
                'access to user data. The dataset offered for sale on '
                'underground forums may involve past scraping incidents and '
                'older data collections.',
 'impact': {'brand_reputation_impact': 'Negative publicity, user concern over '
                                       'account security',
            'customer_complaints': 'Large numbers of users reported '
                                   'unsolicited password reset emails',
            'data_compromised': 'Usernames, email addresses, phone numbers, '
                                'physical location details (alleged)',
            'identity_theft_risk': 'Potential risk if dataset is legitimate '
                                   'and used maliciously',
            'operational_impact': 'Confusion among users, increased support '
                                  'inquiries',
            'systems_affected': 'Password reset email system'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Alleged (dataset offered '
                                                    'for sale on underground '
                                                    'forums)'},
 'investigation_status': 'Ongoing (Investigating origin of the dataset)',
 'lessons_learned': 'Users should remain cautious of unsolicited emails, '
                    'manually navigate to platforms to change passwords, and '
                    'enable two-factor authentication to mitigate account '
                    'takeover risks.',
 'post_incident_analysis': {'corrective_actions': 'Bug fix implemented to '
                                                  'prevent abuse of the '
                                                  'password reset system',
                            'root_causes': 'Bug in password reset email '
                                           'functionality allowing mass '
                                           'triggering without credential '
                                           'compromise'},
 'recommendations': ['Avoid clicking links in unsolicited emails',
                     'Manually navigate to Instagram to change passwords if '
                     'concerned',
                     'Enable two-factor authentication for all accounts'],
 'references': [{'source': 'Bleeping Computer'},
                {'source': 'SiliconANGLE Media'}],
 'response': {'communication_strategy': 'Public statement reassuring users of '
                                        'no breach, advising caution with '
                                        'unsolicited emails',
              'containment_measures': 'Bug fix to prevent mass triggering of '
                                      'password reset emails'},
 'threat_actor': 'External party (unspecified)',
 'title': 'Instagram Password Reset Email Surge and Alleged Data Leak',
 'type': 'Bug Exploitation / Alleged Data Leak',
 'vulnerability_exploited': 'Bug allowing mass triggering of password reset '
                            'emails without compromising credentials'}