Google has become a big part of our day to day lives, most people have a google email account to access google play store and these credentials are often used in SSO (single Sign On) for other applications or services.

When so much information is stored within this google account what would you do if your account got hijacked, breached or compromised? This could potentially lock you out of a load of services and leave your social network open to abuse from a third party.

SO WHAT IF MY ACCOUNT WAS HACKED?!

Firstly, if your Instagram account has been hacked then there is a good chance your email has been hacked as well.  What you would need to do first would be to report it to Instagram. If you are unable to log into Instagram but can still access the email address associated with the account, then you can go through the ‘forgot’ password process to recover your Instagram account and change the associated password. If you are unable to log onto your Instagram account then you can report the breach to Instagram via this link: https://www.facebook.com/help/contact/196687840820038

You can indicate on the form that you no longer have access to your email account and provide an alternate email account that you do have access to.

If the email address associated with your Instagram account is your google account, hopefully, you can recover this account using the google account recovery process: https://accounts.google.com/signin/recovery

Once you have secured your email account, recover your Instagram account and change your password to a secure password. Wherever possible make sure you are using MFA (multi-factor authentication) as an added layer of security.

Here are 6 things you can do to help keep your Instagram account safe:

1. Pick a strong password. Use a combination of at least six numbers, letters and punctuation marks (like! and &). It should be different from other passwords you use elsewhere on the internet.
2. Change your password regularly, especially if you see a message from Instagram asking you to do so. During automated security checks, Instagram sometimes recovers login information that was stolen from other sites. If Instagram detects that your password may have been stolen, changing your password on Instagram and other sites helps to keep your account secure and prevent you from being hacked in the future.
3. Never give your password to someone you don’t know and trust.
4. Make sure your email account is secure. Anyone who can read your email can probably also access your Instagram account. Change the passwords for all of your email accounts and make sure that no two is the same.
5. Log out of Instagram when you use a computer or phone you share with other people. Don’t check the “Remember Me” box when logging in from a public computer, as this will keep you logged in even after you close the browser window.
6. Think before you authorise any third-party app.

Other things to consider doing to limit your risks are:

Google security Checkup

1. Set a recovery phone and email.
   Check your recover email and phone settings. These are used in case you get locked out of your account. This should also send you an alert email to the recovery mail account if your account is logged onto by a non-trusted device.
2. If not already done so, Set up 2 factor authentication for Instagram.

WHAT IS 2 FACTOR AUTHENTICATION?

Two-factor authentication is a security feature. When two-factor authentication is on, every time you log into Instagram from an unknown device you’ll be asked to enter an SMS security code or backup code in addition to your username and password.

To turn two-factor authentication on:

Go to your profile and tap the cog (iOS) or the 3 dots (Android) in the top-right corner

Scroll down and tap Two-Factor Authentication

Tap the slider for Require Security Code to move to the on position

If your account doesn’t have a confirmed phone number, you’ll be asked to enter a phone number. After entering the phone number, tap Next.

A code will be sent to you. Enter that code and tap Next.

Note: After you’ve turned on two-factor authentication, you’ll be able to access backup codes for your account. If you don’t receive an SMS security code during the two-factor authentication login process, you’ll still be able to log into your account by using a backup code.

To turn two-factor authentication off:

Go to your profile and tap the cog (iOS) or the 3 dots (Android) in the top-right corner

Scroll down and tap Two-Factor Authentication

Tap the slider on Require Security Code to move to the off position

Then tap Turn Off at the bottom of the message that appears

Keep in mind that you must have a confirmed telephone number for your Instagram account to use two-factor authentication. When you enter a telephone number to turn on two-factor authentication it will become the confirmed number for your account.

What is a backup code?

When two-factor authentication is on, every time you log into Instagram from an unknown device you’ll be asked to enter a backup code or a SMS code in addition to your username and password.

If an SMS security code can’t be sent due to connectivity or SMS delivery issues, you’ll still be able to complete the two-step authentication process with a backup code.

Click here to find out more about backup codes: https://help.instagram.com/1006568999411025