Hackers trick Meta AI chatbot to hijack high-profile Instagram accounts

Meta confirmed a security breach on Monday after hackers exploited its AI customer support chatbot to hijack high-profile Instagram accounts. The flaw, exposed by security researchers and media outlets, affected notable figures such as Barack Obama’s former White House account, beauty retailer Sephora, and U.S. Space Force Chief Master Sergeant John Bentivegna. Users on platforms like X and Reddit reported similar hijackings, with stolen short handles resold on Telegram. The attack involved hackers using a VPN to spoof their location and mimic the victim’s hometown, bypassing Meta’s localized security alerts. They then initiated a password reset through Instagram’s login screen and engaged Meta’s AI support assistant. Instead of providing verified credentials, attackers used targeted prompts to instruct the chatbot to link a new email address to the victim’s account. The AI sent a one-time verification code to the hacker’s email, allowing them to reset the password and lock out the legitimate owner. Meta spokesperson Andy Stone stated the issue had been resolved and impacted accounts were secured, though the company did not disclose the total number of affected users. The incident highlights risks associated with replacing human customer service with AI, particularly for sensitive account management tasks. Cybersecurity experts warn that granting AI systems authority over user credentials introduces new vulnerabilities. NordVPN’s Chief Technology Officer, Marijus Briedis, emphasized that automated systems handling account recovery must undergo rigorous security checks. He noted that AI-driven tools, if exploited, can become part of the attack chain rather than a defense mechanism. Meta has invested heavily in AI infrastructure this year, aiming to automate administrative operations and develop advanced generative AI capabilities. The breach underscores the need for stricter verification protocols when AI systems manage critical account functions.