Instagram hackers have launched Doxagram, an Instagram search service, where anyone can search for information for only $ 10 per account.
A security researcher at Kaspersky Labs, who also found a similar and reported vulnerability to Instagram, said the problem lies in Instagram's mobile API, especially in choosing a clear, password reset. is causing the phone number and email, not the user's password, to be exposed before the JSON response.
Instagram has not officially confirmed this leak, but it is said that it is investigating the case.
News of the incident came after an unknown hacker hijacked the Selena Gomez singer account with more than 125 million followers and posted a complete nude photo of his ex-boyfriend Justin Bieber.
Instagram also did not confirm whether this data leak was related to Selena's account hacking.
The company has notified its verified users by email and encourages them to be cautious if they receive calls, messages or email from strangers.
When email and phone are in hand, the next step of hackers may be to use them with other tactics to access their accounts and post things that make them embarrassed.
Instagram users are encouraged to use 2-step account authentication and always change, use another password. Also, avoid clicking on links or strange attachments in emails or providing your personal information to untrustworthy sites.