Breaking news

Instagram Secures Platform After AI Chatbot Exploit Leads To Account Hijackings

Instagram Patches Security Vulnerability

Instagram has fixed a security flaw that allowed hackers to take control of user accounts by exploiting Meta’s AI-powered support chatbot. The vulnerability reportedly enabled attackers to add unauthorized email addresses to accounts and reset passwords without access to the legitimate account owner’s email.

Exploit Mechanics Detailed

Reports of account hijackings surfaced over the weekend through posts on Reddit and warnings shared on X. Among the accounts reportedly affected were the Obama-era White House account and the account of U.S. Space Force Chief Master Sergeant John Bentivegna, raising concerns about the potential scope of the vulnerability.

How The Attack Unfolded

Security researcher Jane Wong said her account was compromised after her password was changed without her knowledge. In a post on X, Wong described receiving repeated password reset notifications before losing access to her account. A widely shared demonstration of the exploit showed how an attacker could use a VPN, interact with Meta’s AI Support Assistant and submit an alternative email address. After receiving a verification code, the attacker could reset the password and gain control of the account without accessing the owner’s original email.

Industry Reactions And The Path Forward

Instagram spokesperson Andy Stone confirmed that the vulnerability has been fixed, although Meta has not disclosed how many accounts may have been affected. The incident highlights the security challenges that can emerge as technology companies expand the use of AI-powered support tools and automated account management systems.

Ongoing Security Challenges

The breach has renewed scrutiny of how AI-driven customer support systems handle account recovery and identity verification requests. While the flaw was addressed quickly, the incident demonstrates how automated support processes can become targets for abuse when security controls fail to account for unexpected forms of manipulation.

Keve Welcomes New Cyprus Business Development Organisation

The Cyprus Chamber of Commerce and Industry (Keve) has welcomed Parliament’s unanimous approval of legislation establishing the Cyprus Business Development Organisation, describing it as a major step toward improving access to finance for small and medium-sized enterprises, startups and self-employed professionals.

Expanding Access To Finance

The legislation creates a new public body aimed at addressing financing gaps by supporting businesses that struggle to secure funding through traditional channels.

According to Keve, the initiative could strengthen entrepreneurship, boost competitiveness and support Cyprus’ green and digital transition. The chamber has long argued that SMEs rely too heavily on bank financing, limiting investment, expansion and innovation.

Keve Calls For Swift Implementation

Keve said it helped shape the legislation through the consultation process and called for the organisation to become operational as quickly as possible. It also pledged to continue working with the Finance Ministry and the organisation’s management to support implementation.

How The Organisation Will Operate

Approved by Parliament on Tuesday, the legislation establishes Cyprus’ national business development body under the supervision of the Finance Minister, while the Central Bank of Cyprus will oversee anti-money laundering compliance.

The organisation will design financing programmes, provide loans and conduct studies to identify weaknesses in the financing market.

Cyprus will provide €60 million in initial capital. Over time, the body will also be able to raise funding from European and international institutions and benefit from state guarantees linked to approved strategic priorities.

Recovery Plan Milestone

Creation of the organisation is one of the final milestones under Cyprus’ Recovery and Resilience Plan and is required for the country to receive the plan’s ninth and final payment. Appointment of the board of directors remains the last outstanding step.

Before approving the bill, the Finance Ministry revised the draft following consultations with MPs and stakeholders. The changes removed provisions allowing the organisation to establish companies and narrowed the list of eligible beneficiaries by excluding small mid-cap companies.

Lawmakers also strengthened governance rules by introducing stricter board suitability requirements, conflict-of-interest safeguards, enhanced reporting obligations and borrowing limits. A seven-member board appointed by the Cabinet will oversee the organisation, while a transitional board will serve for two years until it becomes fully operational.

Uol
eCredo
Aretilaw firm
The Future Forbes Realty Global Properties

Become a Speaker

Become a Speaker

Become a Partner

Subscribe for our weekly newsletter