Security flaw in Instagram’s data tool exposed passwords of some users

Instagram has reportedly fixed the bug after it was spotted, and it has also advised affected users to clear their browser history.

Atom Tech Shorts

Data security has become one of the most talked about issue with even large companies being victims of massive data breaches. Facebook has had more than its share of problems related to data security and the latest to get hit is its photo sharing platform Instagram. Though the company says the issue is not too serious and has been contained, it does throw open several questions on the company’s ability to secure its servers and programs to protect the privacy of its customers.

In this bug, reported recently, there is a vulnerability in the “Download your data” tool and the moment a person clicked on it, the URL of the webpage that contains the passwords of the site’s users comes up and anyone can see these details. The data, including the passwords are stored on Facebook’s servers.

Instagram has admitted to the existence of the flaw and says it has corrected it and that the issue no longer remains. It has advised those, whose data might have been exposed, to clear their browser history to make sure that even if someone were to enter the page, they will not be able to lay their hands on anything worthwhile.

The tool itself is the result of the GDPR requirements in Europe where the users are being given the option to download their data and delete from the Instagram site to avoid any risk to being hacked. The tool lets you request for your data, and Instagram will then email you a full copy your data in 48 hours.

But the tool itself is available to users globally.

Unless GDPR-like laws are brought about in every country, many of these sites which ask for your personal data or store personal information, will not make efforts to ensure all your personal details are 100% safe.