Instagram Patches Security Vulnerability
Instagram has fixed a security flaw that allowed hackers to take control of user accounts by exploiting Meta’s AI-powered support chatbot. The vulnerability reportedly enabled attackers to add unauthorized email addresses to accounts and reset passwords without access to the legitimate account owner’s email.
Exploit Mechanics Detailed
Reports of account hijackings surfaced over the weekend through posts on Reddit and warnings shared on X. Among the accounts reportedly affected were the Obama-era White House account and the account of U.S. Space Force Chief Master Sergeant John Bentivegna, raising concerns about the potential scope of the vulnerability.
Follow THE FUTURE on LinkedIn, Facebook, Instagram, X and Telegram
How The Attack Unfolded
Security researcher Jane Wong said her account was compromised after her password was changed without her knowledge. In a post on X, Wong described receiving repeated password reset notifications before losing access to her account. A widely shared demonstration of the exploit showed how an attacker could use a VPN, interact with Meta’s AI Support Assistant and submit an alternative email address. After receiving a verification code, the attacker could reset the password and gain control of the account without accessing the owner’s original email.
Industry Reactions And The Path Forward
Instagram spokesperson Andy Stone confirmed that the vulnerability has been fixed, although Meta has not disclosed how many accounts may have been affected. The incident highlights the security challenges that can emerge as technology companies expand the use of AI-powered support tools and automated account management systems.
Ongoing Security Challenges
The breach has renewed scrutiny of how AI-driven customer support systems handle account recovery and identity verification requests. While the flaw was addressed quickly, the incident demonstrates how automated support processes can become targets for abuse when security controls fail to account for unexpected forms of manipulation.







