Instagram has entered the 21st century, and finally added support for third-party 2FA apps like Google Authenticator, Duo Mobile, and Authy.
Please turn it on.
Tag Archives | Instagram
21-year-old woman charged with hacking Selena Gomez
Popstar Selena Gomez’s alleged hacker has been charged.
Are your secret password reset questions easy to answer with public information?
Give Facebook your nude pics to tackle revenge porn
Facebook trials a new way of tackling revenge porn - which sees victims sending the social network their nude pics.
PODCASTSmashing Security #041: Hacking Instagram, facial failures, and spying bosses
It’s easy to phone up a celebrity on Instagram following security breach, facial recognition at Notting Hill Carnival can’t tell the girls from the boys, and companies are spying on their workers’ activities.
All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest David Bisson.
Instagram breach deepens with dark web ‘Doxagram’ domain
Attackers have set up a dark web domain for their “Doxagram” site that offers for sale the email addresses and phone numbers of high-profile Instagram users.
David Bisson reports.
Instagram confirms hack against high-profile users’ account info
Instagram has confirmed a hacking attack that targeted several high-profile users of the photo sharing application.
Make sure you have a strong, unique password and two-step verification in place to better protect your accounts.
David Bisson reports.
Selena Gomez - please tell your 125 million fans to enable two-step verification
Hackers seized control of the American singer and actress’s Instagram account and posted revealing snaps of her ex-boyfriend Justin Bieber.
How to better protect your Instagram account using two-step verification (2SV)
David Bisson walks you through the steps needed to enable two-step verification on your Instagram account.
Hacked Instagram accounts seducing users with adult dating spam
Your Instagram account could have been spiced up by spammers.
David Bisson reports.
How you could steal money from Instagram, Microsoft and Google with help from a premium rate phone number
Researcher Arne Swinnen found an ingenious way to make money from the likes of Google, Microsoft and Instagram - getting their two-factor authentication registration schemes to call a premium rate phone number:
“They all offer services to supply users with a token via a computer-voiced phone call, but neglected to properly verify whether supplied phone numbers were legitimate, non-premium numbers. This allowed a dedicated attacker to steal thousands of EUR/USD/GBP/… Microsoft was exceptionally vulnerable to mass exploitation by supporting virtually unlimited concurrent calls to one premium number”
Clever!
Swinnen told the tech companies concerned about the issue. Despite the fact that it was clear that no customer data was being put at risk through the technique (the actual potential damage was for the tech companies to lose some cash), the researcher was awarded $2000 and $500 by Instagram’s and Microsoft’s respective bug bounties.
You can learn more in Arne Swinnen’s blog post.
Could your selfies be held to ransom? Alleged Instagram account hacker arrested
The incredibly cool-sounding Titan, the North West of England’s regional organised crime unit, have arrested a 16-year-old boy from Croxteth, Liverpool, on suspicion of hacking an Instagram account.
20 million Instagram accounts were put at risk through sloppy security hole
A bug bounty of US $5,000 has been awarded to a Belgian vulnerability researcher who uncovered two methods by which malicious hackers could brute force their way into Instagram accounts.
Read more in my article on the Hot for Security blog.
Moose – the router worm with an appetite for social networks
A new worm is infecting routers in order to commit social networking fraud, hijacking victims’ internet connections in order to “like” posts and pages, “view” videos and “follow” other accounts.
Read more in my article on the We Live Security blog.
Don’t be like these MPs, unwittingly revealing their home addresses on Instagram
There’s no test for common sense before you’re elected to be a member of the British Parliament.
Make sure you’re protecting your privacy on Instagram, and not revealing too much personal information.
Instagram’s Android users risk having their accounts hijacked – but is that a threat to your business?
Shouldn’t Facebook be doing more to secure its Android app for Instagram users?
Read more in my article for the Tripwire State of Security blog.
VIDEOHow to freak out Instagram and Twitter users - and why they need to be more private
Do you share your location on social networks like Instagram and Twitter?
Perhaps once you’ve watched this video you’ll choose not to in future.
