Meta has addressed a security vulnerability in its AI customer support system that allowed attackers to compromise Instagram accounts. The flaw enabled attackers to add new email addresses to user accounts, triggering password resets and account takeovers. Notable accounts affected included the Instagram account of the White House during the Obama administration and U.S. Space Force Senior Enlisted Leader John Bentinvegna.
The attack involved using a VPN to bypass risk controls and interacting with Meta's AI Support Assistant to change account email addresses. This process allowed attackers to receive verification codes and reset passwords without accessing the original email accounts. Meta confirmed the issue has been resolved, though the number of affected users remains undisclosed. The incident highlights potential risks in AI-driven customer service systems when identity verification is insufficient.
Meta Resolves AI Vulnerability Exploiting Instagram Accounts
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.