Meta is scrambling to clean up after its own AI-powered helper made life very easy for hackers. A flaw in the company’s automated account-recovery assistant let attackers reset passwords and hijack more than 20,000 Instagram accounts. Meta says it spotted the vulnerability last Sunday, shut down the affected tool, and killed outstanding reset links, but not before several high-value handles were briefly in the wrong hands. The mess is already fueling fresh skepticism about letting AI anywhere near security-critical systems.
How Big Was The Hit, And When Did Meta Find It?
Meta told regulators that 20,225 Instagram users were potentially affected and that the weakness sat inside an AI-assisted recovery system called “High Touch Support” (HTS), according to BleepingComputer. In regulatory filings, the company said the tool was mistakenly sending password-reset links to email addresses that were not tied to the targeted accounts at all, which opened the door for attackers to take over profiles in cases where victims had not turned on two-factor authentication.
How Attackers Tricked The Bot
Researchers and leaked demo videos say the attack flow was painfully straightforward. An attacker would start a password reset on a victim’s Instagram account, then open the Meta AI support chat and ask the bot to attach an email address controlled by the attacker to that account. The verification code would then arrive at the attacker’s inbox, and the bot’s handy “Reset Password” button could be used to lock in a brand-new password, according to TechCrunch. To dodge simple location checks, attackers often routed their traffic through VPNs set to the victim’s region.
High-Profile Hits And Quick Spread
Short-handle and official accounts, including the Obama White House archive, a Sephora handle, and the U.S. Space Force chief master sergeant's account, were among those briefly taken and then listed for sale on Telegram, according to The Guardian. Security researchers say that once step-by-step demos of the trick began to be posted and traded, abuse ramped up quickly until Meta finally pushed out a fix.
Meta’s Fix And Its Public Line
Meta says it has disabled HTS, invalidated password reset links that the tool churned out, and is working to secure impacted accounts. The company told affected users that “this issue has been resolved” and insisted there was “no breach of our systems,” according to TechRadar. Meta says the affected accounts have been pushed through mandatory security checkpoints and that the AI-driven recovery flow will only come back online after it tightens authentication checks.
What You Should Do
Security analysts say Instagram accounts that already used app-based two-factor authentication were not affected in this incident. Even so, they urge users to turn on app-based 2FA, reset passwords, review active login sessions, and store backup recovery codes in a safe place, according to guidance compiled by cybersecurity researchers at ThreatAft. If you think your account may have been compromised, the advice is to run through Instagram’s hacked-account flow and watch for official notices from Meta about forced password resets.
Legal And Local Fallout
Meta’s notice to the Maine Attorney General and related filings put the total at 20,225 affected accounts and say 30 Maine residents are in that group, details pulled from security reporting and public documents, according to SecurityWeek. The case adds fuel to long-running complaints about automation-driven account lockouts, a headache local businesses and individual users have been raising for months in coverage on Hoodline, including stories like Meta AI wrongly disabling accounts.
For platform operators, this is a textbook example of what can go wrong when an AI agent is given real authority over authentication flows. Analysts warn that regulators and enterprise security teams are likely to push for tighter human-in-the-loop checks and tougher verification rules before AI systems are allowed to change account recovery details, a trend already taking shape in coverage from TechCrunch.
