"Instagram Fixed After Researcher Finds Way to Link Account Info to PII"

Instagram’s contact importer feature contained a vulnerability that could have allowed malicious actors to access account details and phone numbers using a brute-force algorithm and a network of bots. The information gathered through the exploitation of this security flaw could have also allowed malicious actors to build a database of users, which would be used for future attack campaigns. The vulnerability has now been repaired by Instagram’s parent company Facebook. This article continues to discuss how the vulnerability could have been abused by attackers and Facebook’s response to this issue. 

SC Media reports "Instagram Fixed After Researcher Finds Way to Link Account Info to PII"