ESET Ireland is warning Instagram users in Ireland to be on alert for phishing and impersonation attempts following a recent surge in unexpected Instagram password reset emails. The increase in emails caused confusion online, prompting users to question the security of their accounts.
Instagram has confirmed it fixed an issue that allowed an external party to trigger password reset emails for some users. The company stated there was no breach of its systems and that accounts remain secure, advising users that the emails can be safely ignored.
ESET Ireland said situations like this can create opportunities for criminals, as uncertainty is often followed by targeted scams designed to steal logins, verification codes, or payment details. George Foley, spokesperson for ESET Ireland, said that even when a platform confirms there has been no breach, a wave of legitimate password reset emails can still be exploited by scammers. He explained that people are more likely to click on links, respond to emails, or attempt to “fix” the problem through unsafe channels.
Foley advised that the safest approach is to ignore password reset emails unless they were personally requested. Users should be particularly cautious of any follow-up messages claiming to be from Instagram in the days following the surge, as these are often used by criminals to impersonate security teams or push fake verification prompts.
He added that if users are concerned, they should go directly to the Instagram app or the official website to check their security settings. Enabling two-factor authentication and using a strong, unique password are key steps to protect accounts.
Instagram has also emphasised that receiving a password reset email does not necessarily mean an account has been hacked. The platform encourages users to verify official emails and take appropriate measures to secure their accounts.
For more information, visit www.eset.com/ie/.
