What Happened: An AI Shortcut to Instagram Account Hijacking
Meta’s AI support bot vulnerability was a security flaw in Instagram’s password reset flow that allowed attackers to hijack accounts by sending text prompts to the chatbot, which mishandled sensitive account recovery requests and redirected password reset codes away from legitimate owners. Instead of enforcing strict authentication checks, the AI chatbot accepted natural language instructions and treated them as authorization to change key account details. Hackers used this AI chatbot vulnerability to trigger a password reset exploit without knowing the victim’s email, phone number, or password. Reports and Telegram videos show that high‑profile accounts, including brands and public figures, were targeted using this method. Although Meta says the issue has been fixed and impacted accounts are being secured, the incident underlines how dangerous it is when support bots gain direct control over account management functions.
How the Password Reset Exploit Worked Step by Step
The attack chained together basic tools and a flawed AI workflow. First, hackers used a VPN to match the region of the targeted Instagram account and went to the login page. They selected “forgot password,” entered the victim’s username, and then chose “Get Support” to open Meta’s AI assistant. Instead of following the standard recovery options, attackers typed prompts telling the bot to send a password reset or verification code to an email address they controlled, or to add their email to the account. According to PCMag, videos show the bot eventually sending an 8‑digit reset code to the attacker’s chosen address, bypassing normal protections. The hacker then pasted the code back into the chat, and the AI offered a button to reset the password, handing over full account control with no victim credentials required.
What the Meta AI Security Flaw Reveals About AI Risk
This incident exposes how even well‑known platforms can underestimate security when integrating AI into support flows. By letting the chatbot handle password reset and email-change requests in natural language, Meta created a new attack surface where social engineering could be automated. Attackers did not need persuasive emails or phishing pages; they only needed prompts that the system interpreted as legitimate support requests. TechCrunch’s reporting, cited by Digital Trends, confirms that the exploit worked exactly as shown in circulating videos. The confusion around whether two‑factor authentication blocked the attack shows another weakness: users thought they were safe, yet some still lost accounts. The core lesson is that AI systems must treat account recovery actions as high‑risk operations, with strict, independent verification, not as conversational tasks that can be altered by free‑form text.
How Meta Responded and What Users Should Do Now
Meta has disabled the exploit path and started securing affected accounts, with an Instagram spokesperson confirming that the issue is fixed. However, the attacker method circulated on Telegram and X long enough that many victims are still struggling to regain access, highlighting the lasting impact of this Instagram account hijacking wave. For everyday users, the first step is to enable two‑factor authentication inside Instagram, using an authenticator app where possible, to reduce the chance of future takeovers. Monitor your email for unexpected login or password reset alerts, and respond rapidly if you see activity you did not start. Be wary of relying on any AI support channel for sensitive actions; whenever possible, use official, documented recovery paths and check that reset codes only arrive at your own trusted email or phone. AI may simplify support, but security must stay in human hands.