**Instagram Denies Data Breach After Password Reset Emails Spark Leak Claims**

Meta Platforms Inc.-owned Instagram has denied that it suffered a data breach after a wave of unsolicited password reset emails sparked claims that data from over 17 million user accounts had been leaked.

The sudden spike in password reset emails led to speculation that attackers had gained access to Instagram's internal systems and were attempting to take over accounts at scale. Adding fuel to the fire was the report from cybersecurity researchers claiming that a dataset containing information tied to 17.5 million Instagram accounts was being offered for sale on underground forums.

The data, reportedly available for purchase online, included usernames, email addresses, phone numbers, and in some cases, physical location details. However, Instagram has now come out to clear the air, stating that there is no evidence of a breach or unauthorized access to user data.

"We fixed an issue that allowed an external party to request password reset emails for some Instagram users," a Meta spokesperson said. "We want to reassure everyone that there was no breach of our systems and people's Instagram accounts remain secure. People can disregard these emails, and we apologize for any confusion this may have caused."

The surge in password reset emails is believed to be the result of an external party exploiting a bug that allowed them to trigger password reset messages on a large scale without compromising account credentials or backend infrastructure.

Although there may be an Instagram-related dataset available on hacking sites, it does not necessarily indicate a new breach. Instead, it could involve past scraping incidents and older data collections, which have appeared in the past under the guise of "new leaks."

Instagram is currently investigating the origin of the dataset to determine whether it contains sensitive information that has been compromised.

In light of this situation, users are reminded to be cautious when receiving unsolicited emails. To ensure account security, users should avoid clicking links in these messages and manually navigate to Instagram to change their passwords if concerned. Additionally, enabling two-factor authentication can significantly reduce the risk of account takeover.