Hackers Exploited Meta AI Bot to Hijack Instagram Accounts

Hackers exploited Meta's AI support chatbot to reset passwords and change email addresses linked to Instagram accounts, enabling a wave of high-profile account takeovers over the weekend. The attack targeted Meta's automated customer support system, tricking it into performing sensitive account recovery actions without proper human verification. Meta has since fixed the vulnerability, according to reports from 404 Media and Krebs on Security.

Among the compromised accounts were those of the Obama White House and the Chief Master Sergeant of the U.S. Space Force, which were briefly defaced with pro-Iranian images and messages. Instructions for the exploit circulated on Telegram, demonstrating how to manipulate the AI assistant into resetting account credentials. The scale of affected accounts beyond these prominent targets remains unclear.

The attack vector involved tricking the AI chatbot into believing the attacker was the legitimate account holder, then instructing it to change the associated email address. This allowed the hijacker to initiate a password reset and seize control. The exploit highlights the risk of delegating sensitive account recovery tasks to automated systems without robust checks.

In response, Meta deployed a fix that reportedly blocks the specific manipulation technique used. However, the company has not disclosed whether it will add additional authentication layers for AI-driven support requests. Users are advised to enable two-factor authentication and remain cautious of social engineering tactics targeting support bots.

The incident underscores a broader vulnerability as platforms increasingly offload customer support to AI. Security experts warn that such systems lack the contextual awareness to detect malicious intent, making them an attractive target for attackers. Telegram channels remain a key vector for sharing exploit instructions, amplifying the threat to other platforms using similar AI chatbots.