I'm among the first 6000 users of Instagram and my first name username was stolen a few years ago. Support for verified accounts acknowledged the issue, but couldn't do anything about it.
This turn was an AI exploit, in my case was an outsourcing support 'exploit', where someone paid for my username to be manually changed and given to another user. There will always be a way to get access to accounts if human accountable support doesn't exist, with criminal consequences for employees that violate it.
I had a Threads account banned recently because I liked five posts too quickly and they said my account was "inauthentic", even though the attached Instagram account is just fine. I tried to use the Meta Verified support and they told me I had used my full quota of support already (!?) and refused any requests.
Also, never ever use a VPN and log in with your Instagram account on the web. They're highly likely to flag you as spam immediately even if your account is 10 years old and legitimate.
You then will have to go through a process to remove the flag by taking a selfie with a paper written with some date and user name. Not guaranteed you'll get your account back.
This happened a few times to my account. On the last time it happened, I had to ask my friend who works at Meta to file an internal ticket to try to get my account back.
Meta's antispam seriously sucks. It's so primitive and so easy for a real user to get flagged.
I had an account in 2023 and it one day asked me to upload the selfie with the paper. Literally the second I hit submit it returned within a microsecond to say I was now permanently banned.
I was tempted to pay a Meta employee with this one, but the going rate is about $500-2000 right now. And it's too late because I took the gamble of trying to appeal it. Once you appeal and lose Meta employees can just use the internal ticket system to get it back. It's a more convoluted process and usually they want $5-10K to do it at that point.
Sue who? Meta? You "consented" in the Terms of Service to waive your right to a trial and only get forced arbitration by an arbitrator of Meta's choosing.
Sue the anonymous person who stole your account and sold it to someone else, who is probably nowhere near your jurisdiction? Good luck.
Meta has the capability to find out who authorized the change to this person's account. They log every change done in their administrator panel with a scary level of granularity, as far as I know, and they're able to take actions against employees who go behind Meta's back and take bribes (which, in joao's case, is what happened). This enforcement creates "waves" of account thefts described like so:
Suppose Mallory finds the contact information for Alice, an Instagram employee working overseas. Alice is paid next-to-nothing and wouldn't mind Mallory's extra cash. Mallory posts to their Telegram channel: "Instagram account takeovers for sale! Pay me $5,000+ and I'll take over ANY Instagram account". Mallory gets buyers lined up and promises to take over the accounts when Alice is working. The next day, when Alice signs on to the administrator tools, she sets each account's email address to the ones specified by Mallory, and Mallory pays her a percentage of what she charged. Mallory and Alice continue their scheme for about a week, when Meta finally investigates the situation, traces it to Alice's user account, bans or reverts every account Alice helped steal, and terminates her employment. However, no legal action takes place against Alice. Why? That part, I'm not so sure about. They're able to trace every action to Alice, and Alice is not anonymous, thus they have every ability to bring a case against her. Once Alice's employment is terminated, Mallory simply finds another employee willing to do their bidding. New hiring waves make this easy.
I'm happy to go into more detail about the underground Instagram account market. It's fascinating: people bragging about bribing employees and taking advantage of them, knowing their employment will be terminated, and actively showing off how much money they make. Meta has tried in the past to hit certain high-profile people with a cease & desist letter, but those are hard to enforce in certain jurisdictions.
Meta's aware and tries their best to act on it, but the real solution is simply not hiring outsourced support workers. It's really that simple. They have the money to hire people in-house for good wages, which would solve the root issue: the outsourced workers are desperate for money and gladly will take bribes.
You are 100% able to sue, but, in the US, the result of that suit is 99.9% that you will be held to that arbitration clause anyways, with an arbitrator of Meta's choosing.
Arbitration clauses are very strong in the United States and have been getting stronger for years. Across both Democratic and Republican administrations, in state and federal courts, judges constantly reaffirm that these provisions are binding. Even literal shrinkwrap arbitration clauses on foods (Vital Proteins, Daily Harvest), etc. are upheld.
Exceptions are rare, such as unborn babies getting sick who never signed a clause such as with Daily Harvest, or when a case is public enough to draw backlash such as with the Disney+ trial arbitration clause being used to prevent a man whose wife died at a DisneyWorld restaurant from suing. Even parents suing on behalf of their pre-teenage children (e.g. against Snapchat in an Illinois court) find themselves blocked by arbitration.
There is no way merely having someones Instagram hacked and having "their username stolen" (not something possible, it's Meta's property) will make for such a rare scneario.
Per Instagram's ToS, if you sued instead of filing a Notice of Dispute (i.e. arbitration), you would be forfeiting the provision where Meta pays for your arbitration and other fees for claims less than $75,000. You would also be risking a decision from the arbitrator (AAA, who you should expect to be biased to favor Meta) that you would also need to pay Meta's legal fees.
If you try to sue, your lawyer will tell you all this.
Not expecting to win a dime from Meta, your lawyer would only represent you if you have pockets deep enough to fight a losing fight.
Only up until the point the judge says, "Meta files a motion to compel arbitration and it looks like you're bound to that arbitration clause. You didn't send a letter during the provided 30 day window. It all checks out, good luck to you both."
Then you will be competing in an American Arbitration Asssociation's 'Alternative Dispute Resolution', which is even less favorable for the consumer :D
It's against Meta's terms to buy and sell accounts, thus the bank would never do such a deal unless you structured it a certain way: create a business, the account becomes property of the business, then Chase buys the business and thus the account. This is how certain Twitter accounts were sold a long time ago. $10k for @chasebank (which is what I assume your handle is) is quite good regardless, though.
You might be interested in reading the court case against Eric Meiggs and Declan Harrington, which includes charges against the two involving extortion and SIM swapping for usernames. See page 10: https://storage.courtlistener.com/recap/gov.uscourts.mad.215...
While it isn't directly "stealing", the government has brought charges against people in the past for username-related crimes. There are several similar cases, but this is the first one that came to mind.
People are criminally charged for stealing food to feed themselves. I'd argue that's more a sign of lost humanity than stealing something which has a non-negligible economic value.
At a previous job, I was downloading daily legal torrent data when IT flagged me. The IT admin, eager to catch me doing something wrong, burst into the room shouting with management in tow. I had to calmly explain the situation, as management assumed all torrenting was illegal and there had been previous legal issues with an intern pirating movies. Fortunately, other colleagues backed me up.
Hey, ages ago, as an intern, I have been flagged for BitTorrent downloads. As it turned out, I was downloading/sharing Ubuntu isos, so things didn't escalate too far, but it was a scary moment.
I left a Linux ISO (possibly Ubuntu) seeding on a lab computer at university, and forgot about it after I'd burned the DVD. You can see this was a while ago.
A month later an IT admin came to ask what I might be doing with port 6881. Once I remembered, we went to the tracker's website and saw "imperial.ac.uk" had the top position for seeding, by far.
Fortunately, it was the nice way — that university is one of the backbone nodes of the UK academic network, so the bandwidth use was pretty much irrelevant.
Customer here, from previous versions. Could you expand on the reasoning of not offering an upgrade price? Is it just to messy nowadays on the technical side, especially with the Mac App Store?
Will be upgrading in the future, congratulations on the launch!
There’s two main reasons. One is that this is the first paid update in 14 years. The second is that it’s just such a pain to do that on the App Store and I don’t want to have a two-tier system. I’ve tried to strike a balance on the price bearing this in mind.
The best option I could find was using Digital Ocean Managed Databases. The cheapest costs $15, but you can host multiple databases with good insights and backups. You can choose where you host it, and place it close to the region where youre Fly.io apps are, with low latency.
Only caveat is there isn't an easy way to automatically update the IPs whitelist of the database, to support the Fly builder and deployed app(s).
This change was more due to the iOS 7 flat redesign, than to what the author proposes.
A design trend, where it became fashionable to have a flat design supported by illustration/iconography, further away from skeumorphism, which photography was more close to.
This turn was an AI exploit, in my case was an outsourcing support 'exploit', where someone paid for my username to be manually changed and given to another user. There will always be a way to get access to accounts if human accountable support doesn't exist, with criminal consequences for employees that violate it.
reply