instagramlogoWith social media account hacking becoming increasingly more widespread, users would do well to make sure they're taking every security measure available to them. That goes doubly for frequenters of Facebook-owned Instagram, where account hijacking in particular is a recurring problem.

One of the best ways to protect any online account is by using two-factor authentication (2FA). 2FA offers hardened security during login attempts by requesting that the user provides an extra piece of information only they would know, such as a randomly generated code from a third-party.

Instagram has supported two-factor authentication for some time, but it was tied to a phone number and required users to receive text messages, which has proven to be insecure and left some Instagram users vulnerable to SIM hacking. Last week however, Instagram added non SMS-based two-factor authentication to the app with support for third-party authenticator apps.

With 2FA enabled, you'll be the only person who can access your Instagram account from another device, regardless of whether someone learns your password as the result of a hack or a phishing scam, so it's well worth taking the time to enable the feature. This article shows you how. Note that you'll need to download an authenticator app to follow the steps below – we'll be using Google Authenticator, but Authy is another tried and tested option that works equally well.

How to Protect Your Instagram Account With 2FA

  1. Launch the Instagram app on your iPhone and log in to your account if you aren't already.
    secure your instagram account 1

  2. Tap your profile picture in the bottom right of the Instagram feed.
  3. On your profile page, tap the three-lined button at the top-right of the screen.
  4. Tap Settings at the bottom of the pop-out side menu.
    secure your instagram account02

  5. Tap Two-factor authentication, listed under privacy and security settings.
  6. Tap Get Started.
  7. Tap the Authenticator toggle.
  8. Tap Next.
  9. Tap Open in the prompt that says Instagram wants to open Google Authenticator.
    secure your instagram account03

  10. A prompt will appear in Authenticator asking if you want to add a token for your Instagram account. Tap Yes to confirm.
  11. Tap and hold on the Instagram token to copy the code to the clipboard.
  12. Return to Instagram and long press on the code entry field, then tap the Paste pop-up to enter the authenticator code.

And that's it – 2FA is now enabled for your Instagram account. Note that once you've authenticated a trusted device in this way, you won’t have to do it every time you launch the app, but your account will remain protected.

Top Rated Comments

Jyby Avatar
71 months ago
Science Rules!
Score: 2 Votes (Like | Disagree)
mdatwood Avatar
71 months ago
So basically as trivial as getting into someone else's car with a key, provided one finds a way to get the dealership to give them a duplicate key for someone else's car.
Not at analogous at all. A dealership actually has some protections in place like ID checks. I'm also not sure what dealership will mail me a key to someones car if I just call and give them my name and number. Cell phone companies port numbers almost at will because historically people complained that porting was hard. ATT is currently in a lawsuit with a person who lost 200M of bitcoin because they ported out his number. Social engineering it not the only way though. From this article:

https://www.wired.com/2016/06/hey-stop-using-texts-two-factor-authentication/

Tactics like social-engineering or strong-arming the phone company to subvert two-factor comprise only a fraction of SMS vulnerabilities. Fake cell phone towers known as IMSI catchers or "stingrays" can intercept text messages, too. And the security community has recently been calling attention to weaknesses in SS7 ('https://www.wired.com/2016/04/the-critical-hole-at-the-heart-of-cell-phone-infrastructure/'), the protocol that allows telecom networks to communicate with each other. Hackers can exploit SS7 to spoof a change to a user's phone number, intercepting their calls or text messages. "Any network can tell any other network 'your subscriber’s here now,' and until your phone says otherwise, every call and text is diverted to this other network," says Karsten Nohl, the chief scientist at Security Research Labs, who recently demonstrated the attack for 60 Minutes. "If there’s an attacker, they get all your text messages. it’s completely trust-based...It’s so simple it’s almost embarrassing to call it a hack."
That was 2 years ago, and the attacks have only gotten easier to pull off. I know someone who makes their living on IG, and this was one of their biggest fears. Finally adding a secure 2FA method is a big deal.
Score: 1 Votes (Like | Disagree)
Jyby Avatar
71 months ago
Science Rules!
Score: 1 Votes (Like | Disagree)
mdatwood Avatar
71 months ago
Trivial how?
There is lots of information online, but this describes the easy social engineerings ones.

https://krebsonsecurity.com/2018/08/reddit-breach-highlights-limits-of-sms-based-authentication/
Score: 1 Votes (Like | Disagree)
mdatwood Avatar
71 months ago
Since we are having a conversation about sim hacking, this timely article came out today.

https://motherboard.vice.com/en_us/article/5984zn/listen-to-sim-jacking-account-ransom-instagram-email-tmobile
Score: 1 Votes (Like | Disagree)
makr Avatar
71 months ago
2FA did little to protect my instagram account from being hacked. I was not even able to fully reclaim it. Only solution was to delete and I don't miss it one bit.
How did they hack your account with 2FA on?
Score: 1 Votes (Like | Disagree)

Popular Stories

iPhone 16 Camera Lozenge 2 Perspective Gray

Five Key Upgrades Coming to iPhone 16

Friday March 15, 2024 1:45 pm PDT by
The iPhone is Apple's top-selling product, and it gets an update every year. In 2024, we're expecting the iPhone 16 and iPhone 16 Pro lineup, with an arguably more interesting feature set than we got with the iPhone 15 and iPhone 15 Pro. Subscribe to the MacRumors YouTube channel for more videos. Capture Button All four iPhone 16 models are set to get a whole new button, which will be...
When To Expect New iPads Feature 1

Apple to Announce New iPads on March 26, Rumors Claim

Monday March 18, 2024 4:02 am PDT by
Apple is widely expected to release new iPad Air and OLED iPad Pro models in the next few weeks. According to new rumors coming out of Asia, the company will announce its new iPads on Tuesday, March 26. Chinese leaker Instant Digital on Weibo this morning 日发布%23">claimed that the date will see some sort of announcement from Apple related to new iPads, but stopped short of calling it an...
airpods 3 orange

Two New AirPods 4 Models Expected to Launch in September or October

Sunday March 17, 2024 7:56 am PDT by
Apple suppliers will begin production of two new fourth-generation AirPods models in May, according to Bloomberg's Mark Gurman. Based on this production timeframe, he expects the headphones to be released in September or October. Gurman expects both fourth-generation AirPods models to feature a new design with better fit, improved sound quality, and an updated charging case with a USB-C...
iphone se 4 modified flag edges

iPhone SE 4 Expected to Depreciate Heavily

Tuesday March 12, 2024 9:04 am PDT by
Resale value trends suggest the iPhone SE 4 may not hold its value as well as Apple's flagship models, according to SellCell. According to the report, Apple's iPhone SE models have historically depreciated much more rapidly than the company's more premium offerings. The third-generation iPhone SE, which launched in March 2022, experienced a significant drop in resale value, losing 42.6%...
iOS 17 Passkey With Apple ACCOUNT Feature

'Apple ID' Expected to Change to 'Apple Account' Starting With iOS 18

Sunday March 17, 2024 7:13 am PDT by
MacRumors was first to report that Apple was planning to rebrand "Apple ID" to "Apple Account" across its software platforms and websites like iCloud.com as early as this year, and now Bloomberg's Mark Gurman has corroborated this change. A mockup of the new Apple Account branding In his Power On newsletter today, Gurman said the new "Apple Account" branding will start to be used later this...
General iOS 17 Feature Orange Purple

iOS 17.4.1 Update for iPhone is Imminent

Monday March 18, 2024 5:27 am PDT by
iOS 17.4.1 and iPadOS 17.4.1 should be released within the next few days, with a build number of 21E235, according to a source with a proven track record. MacRumors previously reported that Apple was internally testing iOS 17.4.1. As a minor update for the iPhone, it will likely address software bugs and/or security vulnerabilities. It is unclear if the update will include any other changes. ...