Switch to the dark mode that's kinder on your eyes at night time.

Switch to the light mode that's kinder on your eyes at day time.

Switch to the dark mode that's kinder on your eyes at night time.

Switch to the light mode that's kinder on your eyes at day time.

in

6 Signs Your Instagram Account Has Been Porn Hacked

6 Signs Your Instagram Account Has Been Porn Hacked

hacked_instagram_account_header_0.png Figure 1. Instagram account password changed by scammers

Our findings follow a previous report on Twitter accounts being hacked to post links to adult dating and sex personals, which bears some similarities to this new campaign. However, we have not established a direct link between them.

6 Signs Your Instagram Account Has Been Porn Hacked

Traits of a hacked account
When we first noticed these hacked Instagram accounts, we observed a few identifying traits:

  • Modified username
  • Different profile image
  • Different profile full name
  • Different profile bio
  • Profile link changed/added
  • New photos uploaded

hacked_instagram_accounts_initial.pngFigure 2. Example of hacked Instagram accounts

The profile instructs the user to visit the profile link, which is either a shortened URL or a direct link to the destination site. The profile image is changed to a photograph of a woman, regardless of the gender of the actual account owner.

In addition to modifying the profile information, attackers upload photographs, which are often sexually suggestive. However, they do not delete any images uploaded by the account owner.

hacked_instagram_accounts_with_original_photos.png Figure 3. Original images from account owner remain on hacked profiles

Account passwords changed
The attackers also change the passwords for the breached accounts, which is how the original account owners may learn of the compromise. Even after a few months, these accounts remain in the same state, indicating that the real owners may have created new accounts since.

Scammers get lazy or change tactics?
Recently, we have noticed hacked Instagram accounts lacking some previously identified traits, such as:

  • Instagram username remains the same
  • No new photos uploaded

hacked_instagram_accounts_new_traits.png Figure 4. Examples of hacked Instagram accounts with fewer changes

It is unclear why these two identifying traits have been discarded. However, everything else remains intact, including the modified profile image and link.

Affiliate-based spam
As with similar scams, the profile links redirect to an intermediary site controlled by the scammer. This site contains a survey suggesting that a woman has nude photos to share and that the user will be directed to a site that offers “quick sex” rather than dating. Interestingly, this page only appears on mobile browsers. If the user tries to visit the URLs on a desktop computer or laptop, they are sent to a random Facebook user’s profile.

hacked_instagram_account_affiliate_spam_survey.png Figure 5. Adult-themed survey leads to adult dating website

Once a user completes this survey, they are redirected to an adult dating website that contains an affiliate identification number. For each user that signs up to the site through this link, the affiliate, or in this case the scammers, will earn money.

How were these accounts hacked?
While we do not know how these accounts were compromised, we suspect that weak passwords and password reuse are the cause, especially since over 600 million passwords have surfaced in 2016 from breaches affecting other sites.

Enable two-factor authentication (if available)
Earlier this year, Instagram began rolling out two-factor authentication to its users. This account security feature would prevent the scammers in this campaign from taking over accounts. However, not all Instagram users have this feature available to them. Users can check to see if the option is accessible by tapping the wheel icon on their profile.

instagram_account_settings_two_factor_authentication_0.png Figure 6. Instagram users should enable two-factor authentication, if available

Report hacked accounts
If you or someone you know has had their Instagram account hacked, report the account to Instagram. Note that Instagram will only release information to the account holder and not a third party.

Sources & Images: Symantec

Have something to add to this story? Please share it in the comments.

Avatar

Written by Frederique Bros

Frederique Bros is a contributor for Women Love Tech. Frederique, who launched the website, has more than ten years in multimedia, graphic and web design. Born in France, she lives in Sydney with her French Bulldog Oscar.

Top 5 Technologic Tools To Help Event Managers' Organisation

Unleash Your Creativity: Logitech New Backlit Keyboard

10 Features You Didn't Know About The New Samsung Galaxy Note7

10 Features You Didn’t Know About The New Samsung Galaxy Note7

Back to Top