Instagram Fixes Fraudulent Password Reset Requests

Instagram confirmed on January 11, 2026 that it fixed an issue allowing an external party to request fraudulent password-reset emails for some users, affecting part of its more than two billion accounts. The company said there was no system breach and advised users to ignore the emails. The incident coincides with recent AI-driven feature rollouts, including "Your Algorithm" and updated Reels.
Key Points
- 1Fixes issue allowing external parties to request password-reset emails for some users
- 2Highlights vulnerability surface as Instagram integrates more AI-driven features like "Your Algorithm"
- 3Advise users to enable two-factor authentication and ignore unsolicited password-reset emails
Scoring Rationale
Platform-wide security fix confirmed by Instagram, but shallow coverage and limited technical detail lower broader impact.
Sources
Public references used for this report.
Practice with real Social Media data
90 SQL & Python problems · 15 industry datasets
250 free problems · No credit card
See all Social Media problems