Tech Desk 
Jan 12, 2026
Silhouettes of mobile users are seen next to a screen projection of the Instagram logo in this picture illustration taken March 28, 2018. — Reuters
A recent rise in password reset requests has confused and frightened numerous Instagram users about their account security, as the dispute began when Malwarebytes, an antivirus software business, disclosed a probable data breach that impacted around 17.5 million Instagram users.
According to Malwarebytes, the hack revealed sensitive user information such as usernames, physical addresses, phone numbers, and email addresses.
However, in response to these claims, Instagram has refuted and stated that there was no hack and that user accounts are secure.
Taking to X (formerly Twitter), Instagram stated: "We fixed an issue that let an external party request password reset emails for some people. There was no breach of our systems and your Instagram accounts are secure.
"You can ignore those emails — sorry for any confusion," added Meta-owned social media platform.
Malwarebytes found the purported breach during a routine dark web scan, revealing that the data was being sold on the dark web. The business warns that the exposed information could result in phishing attempts or account takeovers.
The event has caused worry, particularly given Meta's history of data leaks. To be safe, users are advised to use two-factor authentication and examine their account settings.
Users can verify their account security by reviewing the logged-in devices in Meta's Accounts Centre. Instagram has advised users to ignore recent password reset emails, reassuring them that their accounts are secure.
The platform's prompt response seeks to reassure users, but the incident emphasises the significance of being vigilant in protecting online accounts.
