Instagram today announced several new security enhancements that are being implemented to make the social network safer for all users.

Starting soon, Instagram is implementing support for third-party authenticator apps, which will allow them to be used for two-factor verification purposes in lieu of a phone number.

Instagram has supported two-factor authentication for some time, but it was tied to a phone number and required users to receive text messages, which has proven to be insecure and left some Instagram users vulnerable to SIM hacking.

instagramtwofactor
SIM hacking is a method hackers use to gain access to a person's phone number, using it to get into high-profile social media accounts. Some instagram accounts with short handles are valuable and have been stolen through this method, something a third-party authenticator app can protect against.

Instagram says that users can go to the Settings section of the Instagram app, choose Two-Factor Authentication, and then select "Authentication App" to implement two-factor authentication that does not involve a phone number.

Support for third-party authenticator apps is rolling out and will be available globally "in the coming weeks."

Along improved two-factor authentication, Instagram is also enhancing security through a new "About This Account" section that will be added to high-profile Instagram accounts. This feature will allow users to see more information about accounts that reach large audiences, allowing users to "evaluate the authenticity of the account."

To see more about an Instagram account, users can tap on a profile, tap the hamburger menu option and then select "About This Account." Information displayed will include the date the account joined Instagram, the country where it is located, recent username changes, and ads the account is running.

Starting in September, people who have accounts that reach large audiences will be able to review the information that will be available, and after that, the feature will roll out worldwide.

Instagram also plans to make it easier for Instagram users to earn a blue verified badge that lets people know an account is the "authentic presence of a notable public figure." Verification has been available on Instagram, but prior to now, there was no streamlined process for requesting account verification.

instagramverification

To be verified, an account must comply with Instagram's Terms of Service and Community Guidelines. We will review verification requests to confirm the authenticity, uniqueness, completeness and notability of each account. Visit the Help Center to learn more about Instagram's verification criteria.

Instagram users who want to apply for verification can do so by accessing the Settings app and choosing "Request Verification." Username, full name, and a copy of legal or business identification will be required. Like the other features announced today, the verification option is rolling out to users but could take some time to show up for everyone.

Top Rated Comments

OldSchoolMacGuy Avatar
53 months ago
Wonder what they consider "large accounts". Nearly every one of my accounts has over 20k followers, with most well over 100k. Certainly the +100k will be considered large but I wonder what the cutoff is on the lower end.
[doublepost=1535478415][/doublepost]
Never understand authentication apps. I was using one for a while for 3 accounts. Got a new iPhone installed the app and it was reset. Lost 3 accounts because I couldn’t get back into them. For the average user phone number should be more than enough. I mean seriously who the hell is going to hack my SIM card. Come on.... I can see a use for it for users not wanting to hand over their phone number to shady services but maybe you shouldn’t be using those services anyway, just a thought.
Just last week several apps made headlines for being hacked through SIM exploitation. This type of news (that Mac Rumors also publishes) puts these apps in the spotlight, necessitating moves like this from Instagram, Twitter, and others.

The fact that we're seeing accounts exploited this way is a great indicator that these additional measures are needed.
Score: 2 Votes (Like | Disagree)
Prospekt Avatar
53 months ago
Wonder what they consider "large accounts". Nearly every one of my accounts has over 20k followers, with most well over 100k. Certainly the +100k will be considered large but I wonder what the cutoff is on the lower end.
[doublepost=1535478415][/doublepost]

Just last week several apps made headlines for being hacked through SIM exploitation. This type of news (that Mac Rumors also publishes) puts these apps in the spotlight, necessitating moves like this from Instagram, Twitter, and others.

The fact that we're seeing accounts exploited this way is a great indicator that these additional measures are needed.
I have 8k and I got the notification about being a high-reach account
Score: 2 Votes (Like | Disagree)
OldSchoolMacGuy Avatar
53 months ago
I frankly don't understand why important features like this are "rolling out in coming weeks" as opposed to now.
Facebook (and Instagram as part of it) are so huge that they don't roll out new features all at once. Instead, they roll out to smaller areas at a time. This allows them to be sure things are working correctly before continuing to push new features out to everyone. It's a smart way to do things.

If you've ever wondered (or are one of those that gets upset) about Facebook, Instagram, and others who release new updates to their apps every week and just have "Bug fixes and other updates." in the release notes, these updates are what add the ability to push those new features. They don't want to announce those new features in the update because then they can't roll them out gradually. You'd have a bunch of people complaining "WHY ISN'T IT WORKING ON MINE!!!! ‽??!!"
Score: 2 Votes (Like | Disagree)
Mr. Heckles Avatar
53 months ago
Google Authenticator doesn't have the recovery code in all cases. I remember having to guess whether wiping and restoring my phone from a backup would save it... turns out it does but only if I encrypt my backup. This kind of thing can't be left undocumented!
Not the authenticator, the service you’re using it for. If you use an authenticator app for gmail, you get recovery codes, same with Dropbox, Facebook, and others.

Being pedantic, if there is a recovery code, technically it's 1-factor auth and not 2. But still safer because you'll likely keep that code more securely than you would a password.
It’s still 2 factors.
Factor 1: your password
facror 2: the one time password OR the recovery code.
Score: 1 Votes (Like | Disagree)
OldSchoolMacGuy Avatar
53 months ago
Never understand authentication apps. I was using one for a while for 3 accounts. Got a new iPhone installed the app and it was reset. Lost 3 accounts because I couldn’t get back into them. For the average user phone number should be more than enough. I mean seriously who the hell is going to hack my SIM card. Come on.... I can see a use for it for users not wanting to hand over their phone number to shady services but maybe you shouldn’t be using those services anyway, just a thought.
You can switch the Google Authenticator app from phone to phone. Just follow the process on the Google Authentication webpage to transfer everything over to the new phone and it'll work just fine.
[doublepost=1535482405][/doublepost]
Wonder what they consider "large accounts". Nearly every one of my accounts has over 20k followers, with most well over 100k. Certainly the +100k will be considered large but I wonder what the cutoff is on the lower end.
Well, that answers my question. Logged into one of my accounts and got this message for "high engagement accounts like yours."

Score: 1 Votes (Like | Disagree)
OldSchoolMacGuy Avatar
53 months ago
While you aren't wrong, features like two factor isn't something most people use (they should but they don't). More people pay attention to new features on a launch date. And if the feature cannot be used, they tend to be forgotten.

And besides, Instagram's parent company Facebook had TOTP authentication for years. While things can always go wrong and rolling out in phases is safer, I think Instagram is taking more precaution than is warranted.

Also, let's not forget that some big companies, such as Apple, roll out major features to everyone on day 1.
It's not like this change is making major news. Most will never see this announcement on sites like this.

Instagram is already putting announcements within the app and they'll likely add a Story about it too when it rolls out to those chosen users.



I'll be surprised if they don't prompt users to enable it when it becomes available to them too.
[doublepost=1535495722][/doublepost]
Interesting! Did you get the notification recently?
I got the above notification the most recent time I opened the Instagram app.
Score: 1 Votes (Like | Disagree)

Popular Stories

iOS 16

Apple Releases iOS 16.0.2 With Bug Fixes for iPhone 14 Pro Camera Vibration, Copy/Paste Issue and More

Thursday September 22, 2022 1:04 pm PDT by
Apple today released iOS 16.0.2, addressing a number of bugs that iPhone 14 owners have been experiencing since the new devices launched. iOS 16.0.2 comes two weeks after the launch of iOS 16, and it follows iOS 16.0.1, an update made available to iPhone 14 owners on launch day. The update is available for all iPhones that are capable of running iOS 16. The iOS 16.0.2 update can be...
apple watch series 7 aluminum colors yellowbg

Don't Want the Apple Watch Ultra or Series 8? Amazon Has Record Low Prices on Series 7 Models This Week

Friday September 23, 2022 6:56 am PDT by
The Apple Watch Series 8 and Apple Watch Ultra are now available to purchase, but if you aren't interested in these updates you can save a lot of money on Series 7 models right now on Amazon. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. The best deals are on cellular...
Dynamic Island For Android Users Feature

Android App Copying iPhone 14 Pro's Dynamic Island Released on Play Store

Thursday September 22, 2022 7:57 am PDT by
A copycat version of the iPhone 14 Pro's Dynamic Island has arrived on Android's Google Play Store in the form of an app called "dynamicSpot." The app, still in beta, offers customers several different experiences at the top of their smartphones. In its current form, dynamicSpot offers playback control for songs, timers, battery status, and more features coming soon, according to the app's...
maxresdefault

Video Review: Four Days With the iPhone 14 Pro Max

Wednesday September 21, 2022 7:49 am PDT by
Apple on Friday released the new iPhone 14 models, and MacRumors videographer Dan picked one up on launch day. He's been using the iPhone 14 Pro Max non-stop since it came out, and over on the MacRumors YouTube channel, has shared his initial thoughts on the day-to-day experience with the latest iPhone. Subscribe to the MacRumors YouTube channel for more videos. Dan's mini review highlights...
14 vs 16 inch mbp m2 pro and max feature 1

New 14-Inch and 16-Inch MacBook Pros Reportedly Launching Later This Year

Friday September 23, 2022 7:08 am PDT by
Apple plans to release new MacBook Pro models in the fourth quarter of 2022, according to supply chain publication DigiTimes. The report does not mention specific models, but it very likely refers to the next-generation 14-inch and 16-inch MacBook Pros given that the 13-inch model was already updated earlier this year. There has been uncertainty surrounding the timing of new 14-inch and...
facebook meta

Meta Sued Over Tracking iPhone Users Despite Apple's Privacy Features

Thursday September 22, 2022 5:12 am PDT by
Meta is facing a new proposed class action lawsuit that accuses it of tracking and collecting the personal data of iPhone users, despite features and policies made by Apple which are meant to stop that same type of tracking. In August, it was revealed that with the Facebook and Instagram apps, Meta can track all of a user's key taps, keyboard inputs, and more, when using the in-app browser....
AirPods Max 2022 Colors

Ten Things AirPods Pro 2 Tell Us About AirPods Max 2

Saturday September 24, 2022 1:00 am PDT by
Upon the release of the second-generation AirPods Pro, the AirPods Max became the oldest current-generation AirPods product still in Apple's lineup. Introducing several new features like Adaptive Transparency and the H2 chip, the second-generation AirPods Pro may provide some of the best indications yet of what to expect from the second-generation AirPods Max. Almost two years later, rumors...
new airpods pro ear tips

Apple Explains Why Second-Generation AirPods Pro Ear Tips Are Incompatible With Original AirPods Pro

Thursday September 22, 2022 3:12 pm PDT by
Apple today explained why the new silicone ear tips for the second-generation AirPods Pro are not officially compatible with the original AirPods Pro. In an updated support document, Apple said the original AirPods Pro ear tips have "noticeably denser mesh" than the second-generation ear tips. Apple did not provide any additional details, but the mesh density could result in acoustical...
AirPods Pro Second Generation 2 Pairing Feature 1

AirPods Pro 2 Engravings Appear in iOS During Pairing and Connecting

Friday September 23, 2022 9:40 am PDT by
Customers who personalize their second-generation AirPods Pro charging case with an engraving will now have that engraving reflected directly on iOS as they pair and connect their AirPods Pro. Apple allows customers to personalize their AirPods Pro charging case with a special engraving that can include select emojis and Memojis. Unlike before, starting with the second-generation AirPods...