- How to stream Manchester City vs. Crystal Palace Today 1:00 AM
- How to stream Tottenham Hotspur vs. Watford Friday 9:00 PM
- How to stream Barcelona vs. Eibar Friday 6:00 PM
- How to stream ‘Bigfoot’ Silva vs. Gabriel Gonzaga in BKFC Friday 6:00 PM
- Demi Lovato’s nude photos allegedly leaked on Snapchat Friday 3:07 PM
- NBA TV is the new streaming service for basketball fanatics Friday 3:02 PM
- California residents will get cell phone alerts seconds before earthquakes Friday 2:29 PM
- How to stream Real Madrid vs. RCD Mallorca Friday 2:00 PM
- Trump accused of ‘using the language of ethnic cleansing’ regarding Kurds Friday 1:42 PM
- Hillary Clinton also thinks Tulsi Gabbard is a Russian bot Friday 1:13 PM
- TikTok girls dancing to voicemails from sh*tty exes is a vibe Friday 12:34 PM
- Netflix reports strong growth—but it faces 3 major hurdles in Q4 Friday 12:33 PM
- Telegram is hosting videos of extrajudicial killings in Syria Friday 12:32 PM
- ‘El Camino: A Breaking Bad Movie’ tops 8 million viewers in first week Friday 11:31 AM
- ‘Uncut Gems’ brings a high-stakes gambling risk to life Friday 11:29 AM
The private information of millions of prominent Instagram users was left exposed online in an unsecured database, TechCrunch reports.
Discovered by security researcher Anurag Sen, the Amazon-hosted database was not protected by a password and contained more than 49 million records.
Those records, which pertain to Instagram influencers and celebrities, included everything from “their bio, profile picture, the number of followers they have, if they’re verified and their location by city and country” to “the Instagram account owner’s email address and phone number.”
The database reportedly belongs to Chtrbox, a social media marketing firm based in Mumbai, India, that pays certain Instagram users to post sponsored content.
Chtrbox pulled the database offline after being alerted to the issue but did not explain how it came to possess Instagram users’ email addresses and phone numbers.
In a statement to TechCrunch, Facebook, which purchased Instagram in 2012, said it was investigating how the issue unfolded.
“We’re looking into the issue to understand if the data described—including email and phone numbers—was from Instagram or from other sources,” the company said. “We’re also inquiring with Chtrbox to understand where this data came from and how it became publicly available.”
The incident is not the first time that high-profile Instagram users have had their data compromised.
Hackers in 2017 were able to obtain the phone numbers and email addresses of some of Instagram’s biggest users, including President Donald Trump and the rapper Drake, and sold them for bitcoin on the dark web.
The Daily Dot has reached out to Instagram for comment.
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.