What the Meta AI Security Flaw Was and Why It Matters
The Meta AI security flaw was a bug in Instagram’s AI-assisted account recovery chatbot that let attackers request password reset emails to their own inboxes, bypassing the account owner’s registered email and exposing more than twenty thousand accounts to hijacking without any mistake by the users themselves. Meta’s AI-assisted High Touch Support tool is supposed to help people who are locked out of their accounts regain access through guided recovery steps. Instead, a separate code path failed to verify that the email entered during recovery matched the email already tied to the Instagram account. Once attackers received a reset link, they could set a new password and take over any Instagram account hacked in this way that did not have two-factor authentication enabled. This made the flaw a systemic security breakdown inside Meta’s support tools.
How Hackers Exploited the Account Recovery Chatbot
Attackers learned they could abuse the account recovery chatbot by changing one key detail in the process: the destination email. Normally, Instagram’s account recovery system sends password reset links only to the registered address on file. In this incident, attackers used the AI-assisted support flow and supplied their own email addresses instead. Due to a bug in a separate code path, Meta confirms “the system did not properly verify that the email address provided by the individual requesting a password reset matched the email address associated with that user’s Instagram account.” In some cases, they also needed to start the chatbot session from an IP region that matched the victim’s account region. Once the reset email arrived in the attacker’s inbox, they could use the Instagram password reset exploit to set a new password and take control, unless two-factor authentication was enabled.
Scale of the Breach and What Attackers Could See
Meta disclosed that 20,225 Instagram accounts were affected by this vulnerability, with evidence of exploitation beginning around mid-April and becoming widely known by the end of May. The attack did not rely on phishing tricks or users falling for fake login pages; the flaw was inside Meta’s own account recovery chatbot, making it a systemic risk rather than a case of unsafe user behavior. Once inside, hijackers could browse data stored in compromised accounts, including contact details, dates of birth, posts, direct messages, profile information, and activity history. Some high-profile accounts, such as those tied to public figures and brands, were briefly taken over, underlining how valuable this access could be for harassment, fraud, or disinformation. While Meta says it is unaware of exactly what personal information was accessed, the potential exposure is significant.
How Meta Responded and Fixed the Vulnerability
Meta says it discovered active exploitation of the support tool at the end of May and moved the same day to contain the incident. The company disabled the AI-assisted recovery feature, removing the vulnerable code path from production, and invalidated all password reset links created through the faulty process so attackers could not keep using them. Meta also placed potentially affected users in a mandatory security checkpoint, forcing password resets and login verification to lock out hijackers. According to Meta’s filing, the company “fixed this issue, secured impacted accounts, and restored individuals’ access.” Before reintroducing the account recovery chatbot, Meta plans to repair the authentication check so that any email used in recovery must match existing account records. Meta also says it is reviewing similar account recovery flows across its platforms to prevent comparable flaws elsewhere.
Actionable Steps: How to Stay Safe on Instagram Now
Even though Meta has patched the vulnerability, you should treat this incident as a reminder to harden your Instagram security. First, turn on two-factor authentication in Instagram’s settings using an authenticator app or SMS; accounts with 2FA enabled were far harder to hijack in this attack. Next, change your Instagram password to a strong, unique one that you do not reuse on other services, and store it in a reputable password manager. Regularly review your login activity and connected devices inside the app, and log out any sessions you do not recognize. Watch for surprise password reset emails or unfamiliar login alerts, and revoke access for suspicious third-party apps tied to your Instagram account. If you suspect your Instagram account hacked history includes activity you do not recognize, run Instagram’s built-in security checkup and update your credentials immediately.
