Meta to Shut Down Instagram End‑to‑End Encrypted Direct Messages by 2026
What Happened – Meta announced it will retire Instagram’s end‑to‑end encrypted (E2EE) direct‑message feature, citing low user adoption. The company will begin disabling the feature in 2026 and is urging users to export any encrypted conversations before they disappear.
Why It Matters for TPRM –
- Loss of E2EE removes a layer of confidentiality for communications that may contain sensitive business information.
- Third‑party risk assessments that rely on Instagram for secure customer or partner outreach must be updated.
- Organizations may need to adopt alternative secure messaging solutions to maintain compliance with data‑privacy regulations.
Who Is Affected – Social‑media platforms, brands and agencies that use Instagram for customer engagement, marketing, or internal communications.
Recommended Actions – Review any reliance on Instagram’s encrypted DMs, export required messages before the shutdown, evaluate alternative secure channels, and update your vendor risk profile for Meta.
Technical Notes – The feature is being retired due to “low adoption”; no vulnerability, CVE, or exploit is involved. Data types potentially impacted are text messages, images, and files previously protected by E2EE. Source: TechRepublic Security