Instagram 'Download Your Data' Tool Security Flaw Exposed Some Users' Passwords

Advertisement
By Tasneem Akolawala | Updated: 19 November 2018 18:38 IST
Highlights
  • Instagram has reported of a new bug in the data download tool
  • The tool mistakenly shared the user's password via a link
  • The bug has been fixed by Instagram

Instagram launched the data download tool in April this year

Instagram has reported to a few of its users that their password information may have been compromised due to a bug in the new 'Download Your Data' tool. Instagram has confirmed that the URL shared while using the tool included the user's password information as well, something that should not be the case. If this tool was used on a shared computer, this password information in the URL could potentially lead to misuse. The company notes that it has already fixed the bug, but recommends users to change their passwords nevertheless.

The 'download your data' feature was launched in April and it lets users export their photos, videos, archived Stories, profile, info, comments, and non-ephemeral messages. This tool gathers all your data, makes it ready for download, and then sends the user a link via email, clicking which will enable users to download all their Instagram data. Due to the security bug, the link also included the users' account password information erroneously, compromising the user's privacy. The Information reports that an Instagram spokesperson had confirmed that the issue was "discovered internally and affected a very small number of people."

While the link was shared to the user privately via email, if this link was accessed via a public or shared computer, it could risk the users' account credentials being compromised. Instagram says that it has already fixed the issue at hand. "If someone submitted their login information to use the Instagram 'Download Your Data' tool, they were able to see their password information in the URL of the page. This information was not exposed to anyone else, and we have made changes so this no longer happens," and Instagram spokesperson told The Verge.

Advertisement

Even though the issue is fixed, a security researcher cited by The Information brings to light a larger issue with the bug, saying it would only have been possible if Instagram stored users' passwords in plain text format. The Instagram spokesperson disputed this claim saying that the company hashes and salts its stored passwords. While Instagram says that the issue has affected a very small number of people, we recommend that you change your password immediately, and use the data download tool with caution.

 
Post your comments

Catch the latest from the Consumer Electronics Show on Gadgets 360, at our CES 2026 hub.

Further reading: Instagram
Amazon, Apple Deal Win-Win Game for Both: Counterpoint
Xiaomi India Claims Its New Business Will 'Forever Change Rural Retail'
Advertisement

Related Stories

Instagram Will Now Let You Dub and Lip Sync Reels Into Five Indian Languages
16 January 2026
Instagram Denies Reports of Hacking and Data Breach, Says ‘Accounts Are Secure’
12 January 2026
Instagram Will Have to Evolve Fast, Warns Adam Mosseri Amid Rise of AI Content
2 January 2026
Year Ender 2025: Instagram Features Launched This Year, Including ‘Your Algorithm’, Watch History and More
26 December 2025
Instagram Could Embrace Long-Form Video, Premium Content to Compete With TikTok, Says Adam Mosseri
22 December 2025
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Arc Raiders Will Get Multiple New Maps This Year, Says Embark
  2. iQOO 15 Ultra Teaser Hints at Launch Date, Active Cooling Support
  3. Samsung Galaxy S26 Ultra Colourways Spotted in Leaked SIM Tray Images
  4. Here's How Much the Realme P4 Power Could Cost in India
  5. Oakley Meta HSTN Smart Glasses Review
  6. Viruses and Bacteria Evolve Differently in Space, ISS Study Finds
  7. Sarvam Maya OTT Release: Know Everything About This Malayalam Fantasy Drama Film
  8. Amazon Great Republic Day Sale: Best Deals on Printers Under Rs. 10,000
  9. Samsung Galaxy Z Fold 8 May Sport a Smaller Crease Using This Technology
#Latest Stories
  1. Global RAM Shortage Is Reportedly Causing GPU, Storage Drive Prices to Skyrocket
  2. Viruses and Bacteria Evolve Differently in Space, ISS Study Finds
  3. Rockstar Games Said to Have Granted a Terminally Ill Fan's Wish to Play GTA 6
  4. Oppo K15 Turbo Series Tipped to Feature Built-in Cooling Fans; Oppo K15 Pro Model Said to Get MediaTek Chipset
  5. Samsung Galaxy Z Fold 8 Said to Feature Dual Ultra-Thin Glass OLED Panel to Reduce Crease Visibility
  6. Honor Magic 8 Pro Air Launched Alongside Honor Magic 8 RSR Porsche Design: Price, Specifications
  7. Realme Neo 8 Key Specifications Including 8,000mAh Battery, Ultrasonic Fingerprint Sensor Confirmed
  8. Astronomers Find Massive Iron-Rich Feature Lurking Under the Ring Nebula
  9. Asus Reportedly Halts Smartphone Launches ‘Temporarily’ to Focus on AI Robots, Smart Glasses
  10. JioHotstar Announces Monthly Subscription Plans Across Mobile, Super, and Premium Tiers
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.