Hackers exploited Meta's AI chatbot to hijack Instagram accounts, including Obama White House page
By
Maximilian Schreiner
Reliable enough to start your morning with. Toast it again tomorrow.
Summary
Hackers compromised high-profile Instagram accounts, including the Obama White House page, by exploiting Meta's AI support chatbot to change account email addresses, bypassing two-factor authentication entirely. The vulnerability allowed attackers to take over accounts with short, valuable usernames (OG handles) that were quickly resold on Telegram for significant sums. While Meta has patched the flaw, security researchers report another exploit is already circulating on underground markets.
Key quotes
· 5 pulledHackers took over prominent Instagram accounts by asking Meta's AI support chatbot to swap out the email address on file.
Two-factor authentication was bypassed entirely.
Short, highly coveted usernames also changed hands within minutes and were resold on Telegram.
These OG handles, names made up of just a few letters or common words, can fetch six-figure sums on gray markets.
Meta has patched the flaw, but security researchers say another exploit is already circulating on Telegram.
You might also wanna read
Hackers exploited Meta's AI chatbot to hijack Instagram accounts before patch
Meta's AI-powered support chatbot was exploited by hackers to hijack Instagram accounts by tricking it into changing the email associated wi
The Verge·2d ago
Hackers Exploit Meta's AI Support Bot to Hijack High-Profile Instagram Accounts
Hackers exploited Meta's AI customer support bot on Telegram to reset passwords and briefly deface high-profile Instagram accounts, includin
Instagram accounts compromised through AI verification bypass using animated public photos
A wave of Instagram account takeovers, including high-profile ones like the Obama White House account, exploited a flaw in Instagram's AI id
0xsid.com·1d agoInstagram accounts compromised through AI verification bypass using animated public photos
A wave of Instagram account takeovers, including high-profile ones like the Obama White House account, exploited a flaw in Instagram's AI id
0xsid.com·1d ago
Meta launches encrypted 'Incognito Chat' for Meta AI with no server-side conversation logs
Meta CEO Mark Zuckerberg announced Incognito Chat for Meta AI, a new private chat mode that uses end-to-end encryption and 'Private Processi
The Verge·21d ago
Personal Experience: AI Impersonation After Announcing Divorce on Instagram
The author shares a personal experience of announcing their divorce on Instagram, only to have their identity and content stolen by AI imper
eiratansey.com·5mo ago
Instagram Head Warns About AI's Threat to Authenticity on the Platform
Instagram head Adam Mosseri expressed concerns about AI's impact on the platform, warning that AI-generated content threatens authenticity a
The Verge·4mo ago