tutorao.com

Hacked on Instagram? Here Is Your Step-by-Step Recovery Guide

• CA Bhavesh Jhalawadia
• 0
• Posted on January 7, 2026

Thousands of Instagram accounts are compromised every day. If you’ve just lost access, do not panic, but do act immediately. Hackers often change email addresses and enable two-factor authentication (2FA) within minutes, making standard recovery impossible.

Follow this exact protocol to bypass the hacker’s safeguards and reclaim your identity.

---

Phase 1: The Strategic Login (Crucial Step)

The most common mistake people make is rushing the standard password reset process, which often just alerts the hacker that you are trying to get back in.

1. Open the Instagram App: Go to the login screen on your mobile device (this method works best on the phone you normally use).
2. Attempt a Login: Try to log in with your usual username and password.
3. Click “Forgot Password”: When the login fails, tap the “Forgot password?” link.
4. 🛑 STOP! Do Not Click “Next”:
   • The Trap: Most users enter their username and immediately hit the big blue “Next” button. Do not do this.
   • Why: Clicking “Next” often triggers an automatic email to the address currently on file. If the hacker has already changed this to their own email, you are simply sending them a warning that you are active.
5. Select “Need More Help”: Instead of “Next,” look for the option that says “Need more help?” (usually at the bottom of the screen) and tap it.

---

Phase 2: Identifying the Account

Once you have bypassed the standard reset screen, you need to tell Instagram specifically which account is in trouble.

1. Find Your Account: Enter your username, phone number, or email address to locate your profile.
2. Select “My Account Was Hacked”: You may see a list of issues. Select the option explicitly stating “My account was hacked.”

---

Phase 3: Bypassing the Hacker’s Info

Instagram will now offer to send a confirmation code. This is where you must be careful not to send it to the hacker.

1. Review Contact Options: Look at the list of emails and phone numbers provided.
   • The Hacker’s Email: You may see a strange email address (e.g., a .ru or unknown Gmail address). Do not select this.
   • Your Information: If your phone number or old email is still listed, select that option immediately and click “Send Login Code.”
2. The 2FA Roadblock:
   • If you enter the code but are then asked for a 6-digit authentication code (from an app), the hacker has likely enabled Two-Factor Authentication (2FA).
   • The Fix: Do not give up. Tap “Try another way” > “Get Support.”

---

Phase 4: The Video Selfie Verification

This is the “Silver Bullet” for reclaiming personal accounts. If you have photos of yourself on your profile, this step is your best chance.

1. “Yes, I have a photo of myself”: Instagram will ask if you have photos of yourself on the account. Select “Yes.”
2. Enter a Secure Email: Instagram will ask for an email address where they can reach you. Enter a new, secure email that the hacker does not know (do not use the one that was compromised).
3. Record the Video Selfie:
   • Hold your phone at eye level.
   • Follow the on-screen prompts to turn your head left, right, up, and down.
   • How it works: AI compares this video to the photos on your Instagram grid to verify your identity. This process bypasses passwords and 2FA codes entirely.
4. Submit and Wait: Once submitted, you will typically receive a response to your new email within 20 minutes to 24 hours.

---

Phase 5: Locking the Door Behind You (Post-Recovery)

Once you receive the recovery link and get back in, you are vulnerable until you secure the account.

1. Go to Settings > Accounts Center > Password and Security.
2. Log Out Other Devices: Check “Where you’re logged in” and force logout on all unrecognized devices.
3. Check Contact Info: Go to “Personal Details” and delete any emails or phone numbers the hacker added.
4. Enable 2FA (Correctly): Turn on Two-Factor Authentication immediately.
   • Pro Tip: Use an Authenticator App (like Google Authenticator or Duo) rather than SMS text, as SMS can be intercepted (SIM swapping).
5. Save Backup Codes: Generate “Backup Codes” in the 2FA menu. Screenshot them and save them offline. These are your lifeline if you get locked out again.

Summary Checklist

• [ ] Don’t click the blue “Next” button.
• [ ] Use the “Need more help” path.
• [ ] Use the Video Selfie verification if 2FA is blocked.
• [ ] Revoke hacker’s access immediately after recovery.

Instagram