A security researcher has discovered a publicly-accessible database containing the details of millions of Instagram users, including their contact information.

Read more in my article on the Tripwire State of Security blog.

Someone has posted some rather bizarre things on singer Michael Bublé’s Instagram account.

Travel blogger Delaine Maria D’Costa had her account wiped after she failed to pay an extortionist $200.

That was bad enough, but then she had to try to convince Instagram to let her have it back again.

One travel blogger finds you don’t have to be Kylie Jenner to be targeted by an Instagram hacker. When 40 iPhones at a hospital mysteriously die, what could be the explanation? And, surprise surprise, political parties in the USA are throwing around hacking accusations.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security’s Mark Stockley.

Instagram has entered the 21st century, and finally added support for third-party 2FA apps like Google Authenticator, Duo Mobile, and Authy.

Please turn it on.

Popstar Selena Gomez’s alleged hacker has been charged.

Are your secret password reset questions easy to answer with public information?

Facebook trials a new way of tackling revenge porn – which sees victims sending the social network their nude pics.

It’s easy to phone up a celebrity on Instagram following security breach, facial recognition at Notting Hill Carnival can’t tell the girls from the boys, and companies are spying on their workers’ activities.

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest David Bisson.

Attackers have set up a dark web domain for their “Doxagram” site that offers for sale the email addresses and phone numbers of high-profile Instagram users.

David Bisson reports.

Instagram has confirmed a hacking attack that targeted several high-profile users of the photo sharing application.

Make sure you have a strong, unique password and two-step verification in place to better protect your accounts.

David Bisson reports.

Hackers seized control of the American singer and actress’s Instagram account and posted revealing snaps of her ex-boyfriend Justin Bieber.

David Bisson walks you through the steps needed to enable two-step verification on your Instagram account.

Your Instagram account could have been spiced up by spammers.

David Bisson reports.

Researcher Arne Swinnen found an ingenious way to make money from the likes of Google, Microsoft and Instagram – getting their two-factor authentication registration schemes to call a premium rate phone number: “They all offer services to supply users with a token via a computer-voiced phone call, but neglected to properly verify whether supplied phone

The incredibly cool-sounding Titan, the North West of England’s regional organised crime unit, have arrested a 16-year-old boy from Croxteth, Liverpool, on suspicion of hacking an Instagram account.

A bug bounty of US $5,000 has been awarded to a Belgian vulnerability researcher who uncovered two methods by which malicious hackers could brute force their way into Instagram accounts.

Read more in my article on the Hot for Security blog.