An independent security researcher from India recently reported a critical account take over a vulnerability that presented in Facebook-owned Instagram that let an attacker gain the One Time Password (OTP) within 10 minutes. Facebook and Instagram are frequently fixing several vulnerabilities discovered by the internal team and also the bugs reported by external independent security researchers. The social media giant recently increased the bug bounty for critical flaws such as account take-over and remote code execution vulnerabilities. Facebook revealed that they stored tens of millions of Instagram passwords in plain text including thousand of the Instagram password.”]
Source: https://gbhackers.com/hack-instagram-critical-vulnerability/