Skip to content
Tech News
← Back to articles

Instagram's AI Chatbot Gave Away a Bunch of Accounts to Hackers

2026-06-02 | original
read original get AI Chatbot Security Guide → more articles
Why This Matters

The incident highlights a critical vulnerability in AI-driven customer support systems, exposing how malicious actors can exploit AI chatbots to compromise user accounts without traditional authentication. This raises urgent concerns about the security and reliability of AI-powered customer service in the tech industry, emphasizing the need for robust safeguards to protect consumer data and digital identities.

Key Takeaways

You may have heard that some notable Instagram accounts were hacked over the weekend. Barack Obama's White House account was arguably the biggest among them.

What you may not have heard is that the hackers didn't have to try very hard: Meta's AI customer support chatbot essentially handed the accounts over.

According to 404 Media, hackers simply had to request that Meta's AI support assistant chatbot change the email address associated with the targeted account. Hackers then tricked the bot into initiating a password reset without requiring identity verification. The AI then sent an access code to the hacker's own email address, which the hacker copied into the chat. This prompted the AI to display a "Reset Password" button, which was then used to modify the password and take control of the account.

There's even an edited step-by-step video of the process on X. The hacker used a VPN to make it seem they were in the target's location, and the AI quickly obliged with the request. At no point did the hacker even need the user's email address or original password.

Instagram had an exploit that allowed you to use Meta AI to reset passwords to accounts with no MFA on them. The exploit was patched a short time ago.pic.twitter.com/PEUwLvmllj — Dark Web Informer (@DarkWebInformer) June 1, 2026

The security breach hit accounts, including makeup retailer Sephora and US Space Force Master Sergeant, John Bentivegna. It's unclear how many accounts were affected in total, but many users reported being hacked on Reddit and X over the weekend, including security researcher Jane Wong.

"The password got changed without my knowledge and I was getting different password reset attempts throughout yesterday," Jane said on X. "And I got repeatedly logged out from the [Instagram] iOS app. Quite concerning."

How did the hack happen?

The problem is almost entirely due to Meta's customer support now being run by AI. The tech giant made the switch back in March, saying it would enable "24/7 help for account issues like updating your password and settings for your profile."

But with the AI chatbot handling the whole process, humans couldn't step in when suspicious activity began. That allowed hackers to carry out the social engineering-style attack and pull it off multiple times before anyone noticed.

... continue reading

Explore topics: instagram meta ai chatbot password reset hackers
Related:
The advertising cartel coming to your web browser
Martin Scorsese becomes the latest — and most unlikely — Hollywood voice for AI
Hackers found a way to make Meta’s AI hand over Instagram accounts
Meta Increases Social Media Safety Restrictions for Minors as Legal Backlash Intensifies
Meta repeatedly snubs EU body over Facebook and Instagram user bans

© 2026 GoKawiil

About | Editorial Policy | Contact