Steadvar — News without the noise

Privacy · Terms · About

© 2026 Steadvar. All rights reserved.

Meta Patches Instagram Account Hijack Exploit Involving AI Chatbot

TechnologyCrime2h ago
Share

Similar Articles

Lawsuits Allege OpenAI Failed to Report Threat Before Canadian School Shooting

TechnologyCrime4/29/2026

Meta Reorganizes Workforce, Shifts Focus to AI Amid Layoffs and Role Changes

BusinessTechnology5/20/2026

Woman Sues Instagram Over AI-Generated Deepfake Videos Using Her Likeness

CrimeTechnology5/1/2026

Publishers and Author Scott Turow Sue Meta Over AI Training Data

BusinessTechnology5/5/2026

EU Accuses Meta of Insufficient Child Protection on Facebook and Instagram

BusinessTechnology4/29/2026

Meta has patched a security exploit that allowed hackers to use its AI support chatbot to hijack Instagram accounts, including high-profile ones. The method, which involved masking locations with a VPN, was used to take over and resell accounts for large sums. The company issued an emergency fix on May 29.

Facts First

  • Meta patched an exploit on May 29 that let hackers use its AI support chatbot to change account emails.
  • High-profile accounts were compromised, including the Barack Obama White House and Chief Master Sergeant of Space Force accounts.
  • The hacked accounts posted pro-Iranian content before being recovered.
  • Hackers used VPNs to mask their locations to match the target account's region.
  • The method was shared in videos on Telegram groups for hackers and security researchers.

What Happened

Hackers exploited a vulnerability in Meta's AI support chatbot to change the email addresses associated with Instagram accounts, enabling them to take control. According to a report by 404 Media, the attack involved using a Virtual Private Network (VPN) to match the target account's region, initiating a password reset, and then prompting the AI chatbot to change the account's email. The exploit was used to compromise accounts, including the Barack Obama White House and the Chief Master Sergeant of Space Force's Instagram accounts, which posted pro-Iranian images and messages. Meta implemented an emergency patch to address the vulnerability on May 29.

Why this Matters to You

If you use Instagram, your account's security may have been at risk from this now-patched method. The exploit shows how automated support systems could be manipulated, potentially affecting any user. While the immediate threat is addressed, the incident highlights that even high-profile accounts with significant followings can be targeted, which may lead to more cautious security practices from Meta and other platforms. Your personal information and digital identity on social media could be vulnerable to similar sophisticated attacks.

What's Next

Meta's patch is likely to prevent this specific method of attack, but hackers may continue to search for new vulnerabilities in automated support systems. The company may enhance its AI chatbot's security protocols and verification steps. Users should enable two-factor authentication and monitor their account settings for any unauthorized changes.

Perspectives

“
Security Observers note that the exploit is 'shockingly easy' to execute and describe the method as a 'very straightforward prompt injection attack'.