For Meta, the stakes are particularly high because account security sits at the foundation of its advertising business and social-media ecosystem. A vulnerability that allows attackers to take over user accounts threatens not only individual customers but also the credibility of the company’s broader AI strategy. The incident underscores a challenge confronting the entire industry: every new AI-powered convenience creates a potential new attack surface, and the cost of getting security wrong may rise as quickly as the technology itself.
Meta Platforms Inc.’s push to use artificial intelligence to automate customer support may have exposed a new security risk after hackers allegedly used the company’s AI-powered account assistance tool to gain control of Instagram profiles, according to a report by 404 Media.
The exploit targeted a support feature introduced by Meta in March that allows Facebook and Instagram users to resolve account issues and report impersonation scams through a conversational AI assistant. According to the report, attackers were able to persuade the chatbot to change the email address associated with targeted Instagram accounts, creating a pathway to bypass account recovery safeguards and ultimately seize control of profiles.
The technique was notable less for its technical sophistication than for its simplicity. By using a virtual private network to match a victim’s geographic region, hackers allegedly convinced the support bot to update account information without requiring the level of identity verification typically expected for such sensitive changes. Once the email address was altered, attackers could complete two-factor authentication procedures and lock legitimate users out of their accounts.
Hackers discussed the vulnerability in Telegram groups for several months before it was addressed, according to messages reviewed by 404 Media. Access to high-profile Instagram accounts was reportedly being offered for sale, highlighting how flaws in AI-assisted support systems can quickly become commercialized within cybercriminal networks.
“It’s either the new Meta Accounts Center glitching out or my Instagram account is being targeted in a hacking attempt,” former Meta researcher and self-proclaimed hacker Jane Wong wrote in a Threads post. “It appears that my password has been changed without my knowledge / I was not able to log in using my password.”
The incident underscores a broader challenge facing technology companies as they deploy generative AI systems into functions traditionally handled by human employees. While AI assistants have rapidly spread across customer service, technical support and account management operations, security experts have repeatedly warned that large language models can struggle with edge cases, manipulation attempts and identity-verification tasks that require nuanced judgment.
Unlike conventional software, which follows fixed decision trees, AI-powered support systems often rely on probabilistic reasoning. That flexibility can improve customer experience and reduce support costs, but it can also create new attack surfaces when users discover ways to phrase requests that circumvent established safeguards.
The episode illustrates a growing tension in Silicon Valley’s race to automate support operations. Technology companies have promoted AI agents as a way to reduce labor costs and handle rising volumes of customer inquiries, yet account recovery and identity verification remain among the most security-sensitive functions in consumer technology. A single failure can provide attackers with access to years of personal messages, photos, contacts and linked services.
The reported exploit also arrives at a difficult moment for Meta’s broader AI ambitions. Chief Executive Mark Zuckerberg has made artificial intelligence the company’s top strategic priority, investing tens of billions of dollars in infrastructure, foundation models and AI-powered consumer products. The company has integrated Meta AI across Facebook, Instagram, WhatsApp and Messenger in an effort to make AI a core part of its ecosystem.
At the same time, Meta has faced repeated scrutiny over data security and privacy practices. Earlier this year, The Information reported that an internal AI agent triggered a security incident that exposed sensitive user information to employees without appropriate authorization. While there is no indication that the incident was directly related to the Instagram vulnerability, both episodes highlight the operational risks companies face as AI systems gain access to sensitive data and decision-making processes.
The alleged vulnerability emerged after several prominent Instagram accounts, including those belonging to former President Barack Obama and Space Force Chief Master Sergeant John Bentivegna, were compromised. It remains unclear whether those incidents were connected to the AI support exploit.
Meta has reportedly patched the flaw. However, the episode is likely to reinforce concerns among regulators, cybersecurity professionals and enterprise customers about the growing role of AI systems in identity management, one of the most critical layers of digital security.
The incident may also serve as a warning that the next generation of cyberattacks will not necessarily target software vulnerabilities in the traditional sense. Instead, attackers may increasingly focus on manipulating AI systems themselves, treating chatbots and autonomous agents as new entry points into corporate platforms. As companies rush to embed AI deeper into customer-facing operations, ensuring those systems can reliably distinguish legitimate users from malicious actors is becoming a central cybersecurity challenge.
Stay ahead of the stories shaping our world. Subscribe to Impact Newswire for timely, curated insights on global tech, business, and innovation all in one place.
Dive deeper into the future with the Cause Effect 4.0 Podcast, where we explore the ideas, trends, and technologies driving the global AI conversation.
Got a story to share? Pitch it to us at info@impactnews-wire.com and reach the right audience worldwide
Faustine Ngila is the AI Editor at Impact Newswire, based in Nairobi, Kenya. He is an award-winning journalist specializing in artificial intelligence, blockchain, and emerging technologies.
He previously worked as a global technology reporter at Quartz in New York and Digital Frontier in London, where he covered innovation, startups, and the global digital economy.
With years of experience reporting on cutting-edge technologies, Faustine focuses on AI developments, industry trends, and the impact of technology on society.
Discover more from Impact Newswire
Subscribe to get the latest posts sent to your email.
