Back

Meta AI Exploit Allows Unauthorized Instagram Account Access

Severity: High (Score: 67.5)

Sources: www.thewrap.com, Cybersecuritynews, Neowin

Published: 2026-06-01 · Updated: 2026-06-01

Keywords: meta, instagram, accounts, into, handing, over, password

Summary

A security flaw in Meta's AI support assistant on Instagram has been exploited by hackers to gain unauthorized access to user accounts, even those with two-factor authentication enabled. Attackers use a VPN to match the target's location and send a deceptive message to the AI, which then forwards a password reset link to the attacker's email. This method has reportedly compromised thousands of accounts since February 2026, including a dormant account linked to the Obama White House. Security researchers ZachXBT and Dark Web Informer were among the first to expose this vulnerability. Although Meta has since patched the exploit, reports indicate that the exploit was active for several months prior to the fix. Users have reported receiving unsolicited password reset requests, indicating the widespread nature of the attack. Meta's push to integrate generative AI into its platforms has raised concerns about security vulnerabilities in automated systems. Key Points: • Hackers exploited Meta's AI assistant to hijack Instagram accounts. • The attack method involved deceptive messages sent to the AI, bypassing 2FA. • Thousands of accounts were compromised, including a notable dormant account.

Detailed Analysis

**Impact** Thousands of Instagram accounts were compromised worldwide since at least February 2026, including high-profile and dormant accounts such as the former Obama White House page. The exploit bypassed two-factor authentication, allowing unauthorized password resets and account takeovers. This affected users primarily in the US and Canada, where logged-out AI support was accessible. The incident risks user data exposure and reputational damage to Meta and its platform users. **Technical Details** Attackers used prompt injection against Meta’s AI support assistant by sending crafted messages impersonating account owners, combined with VPNs matching the target’s location. The AI then sent password reset links to attacker-controlled emails without verifying identity or 2FA codes. The vulnerability resided in the AI-powered account recovery tool integrated into Instagram’s chatbot interface. No CVE identifiers or malware names were provided. The attack occurred during the account recovery stage of the kill chain. **Recommended Response** Meta has reportedly patched the vulnerability, but defenders should verify that AI support tools enforce strict verification before sending password reset links. Monitoring for unusual password reset requests and VPN usage matching target locations is advised. Organizations should audit AI-driven support channels for similar weaknesses and educate users about suspicious reset notifications. No specific IOCs were provided for blocking.

Source articles (3)

  • Instagram Meta AI Vulnerability Allegedly Enables Password Reset for Accounts — Cybersecuritynews · 2026-06-01
    A critical flaw in Meta’s AI-powered account recovery tool on Instagram allowed attackers to hijack high-value accounts by tricking the chatbot into forwarding password reset codes with no verificatio…
  • People are using prompt injection to trick Meta's AI into handing over Instagram accounts — Neowin · 2026-06-01
    Reports have started circulating of a security flaw where hackers are tricking the Meta AI support assistant on Instagram into handing over user accounts without authorization (even with 2FA enabled).…
  • Obama White House Instagram Account Hacked Shiites Control — www.thewrap.com · 2026-06-01

Timeline

  • 2026-02-01 — Exploit discovered: Hackers began using a vulnerability in Meta's AI assistant to hijack Instagram accounts.
  • 2026-06-01 — Vulnerability publicly exposed: Security researchers revealed the exploit, detailing how attackers bypassed account security.
  • 2026-06-01 — Meta patches the exploit: Meta announced that the vulnerability has been addressed after reports of widespread account compromises.

Related entities

  • Data Breach (Attack Type)
  • Obama White House (Company)
  • Twitter (Company)
  • Canada (Country)
  • CWE-287 - Improper Authentication (Cwe)
  • Instagram (Platform)
  • WhatsApp (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed