Getting Unwanted Instagram Password Reset Emails? Don't Click Those Links
PCMag••business
Key Points:
- A data breach potentially affected up to 17.5 million Instagram accounts, exposing sensitive information such as usernames, physical addresses, phone numbers, and email addresses.
- Cybersecurity firm Malwarebytes recommends users change their passwords or enable two-factor authentication (2FA) to protect their accounts, while cautioning against clicking on unsolicited password reset emails.
- Some Instagram users have reported receiving fake password reset emails, a common phishing tactic, and are advised to change passwords directly through Instagram’s settings rather than via email links.
- The breach is believed to be linked to an Instagram API leak in 2024, with stolen data published for free on a message board by a user named “Solonik” on January 7, 2026.
- To
