The CSIRT warns Instagram users: “a large-scale campaign to steal accounts is underway”. The rules to follow to avoid the worst.
The CSIRT warns Instagram users: “a large-scale campaign is underway to steal Instagram accounts . The Italians are also targeted ”. The Italian Cybersecurity Agency therefore advises users to keep a watchful eye and follow best practices to secure their accounts on social networks.
In any case, it seems that the criminals mentioned by the agency are carrying out a phishing campaign based on social engineering techniques . In essence: it would be enough to use the basic rules of diligence and common sense to protect yourself. Never give out your login credentials and above all pay close attention to the emails and links we receive. Furthermore, it would be advisable to always double check the domains we access: even if the login screen is the same as that of Instagram, it could be that the page has been cloned. You can easily see it by checking the spelling of the address: if there are numbers or strange letters – anything other than Instagram.com -, it is easy to fall into a scam.
The CSIRT then explains that it never, under any circumstances, shares the authentication codes received by SMS or email. Instagram will never ask you to share 2FA authentication codes verbally or by message . Speaking of which, if you haven’t already done so: it’s essential to activate two-factor authentication , in this way criminals don’t just need your password to steal your account.