All Collections
Identity Theft | Cyber Security Tips
How do I keep my Instagram account secure?
How do I keep my Instagram account secure?

Here are the steps you can take to prevent an account takeover

Jonathan Livneh avatar
Written by Jonathan Livneh
Updated over a week ago

These tips cover Instagram for sure, but many of these practices will be a common theme as you dive into securing other online accounts you have.

  • Enable two-factor authentication (2FA). By enabling 2FA, you can add an extra layer of security and dramatically strengthen your account. This can be done either by installing a third-party authentication app (which will generate temporary login codes) or requesting WhatsApp or SMS codes. Although either method will mitigate your risks of being hacked, SMS is more vulnerable as an attacker can intercept text messages.

    • Once you've turned on the 2FA of your choice, you'll be able to see login requests, remove stored devices, and access backup codes all from your account settings.

    • Backup codes allow you to access your account in the event you are having issues receiving your 2FA login code. Make sure to store them in a safe place.

    You can find detailed instructions on how to enable two-factor authentication here.

  • Refresh your password. If you've had the same password for a while, we highly recommended you change it. The new one should be strong and unique, and should not have been used in the past. Do not share it with anyone. Try to change your password every 6 months. If you're worried about remembering your password, you can use a password manager.

    Here's how you can reset your Instagram password.

  • Review your personal info. Enter your account settings and verify that your phone number and email address are correct. This is especially important if you typically use your username to log in (as opposed to SSO - single-sign-on), as you might be unaware of any changes. Moreover, your phone number should be up to date.

    • Check your login activity under the Security tab in your settings for any device or location you do not recognize.

  • Secure the email account linked to Instagram. Look through your sent and trash folders for anything suspicious. Since your email account is key to verification should something happen to your Instagram, make sure to select a password that is complex and original.

  • Check third-party access. Be careful before giving third-party apps or websites access to your Instagram account. You can manage them under Settings>Security>Apps and websites. These can fall under three categories:

    1. Active— This means you’ve used one within the last 90 days, and it can access any information you’ve shared with it at any point in time.

    2. Expired— Its access has been deactivated due to inactivity.

    3. Removed— You have manually removed it and it can now only access public information on your account.

  • Log out of devices you don't use. Remember to log out of any account when using devices other than your primary one (your cell). This not only includes public computers, but also extends to a friend or relative's device.

  • Protect your online account. By activating Cyrus's online account protection feature, you can monitor your email for unusual activity like unrecognized app connections and logins.

Did this answer your question?