Meta Fixes AI Flaw: Instagram Account Hacks Resolved

Meta has resolved a major security flaw in its artificial intelligence support assistant. This vulnerability allowed hackers to bypass security protocols and take over premium Instagram accounts. Andy Stone, a Meta communications official, confirms the issue is fixed and impacted accounts are being secured. The critical flaw, which was shared on Telegram, let attackers hijack accounts without needing the victim's email or phone. Attackers reportedly used a virtual private network to match the target's location, bypassing safeguards. They then triggered a password reset, opening a chat with Meta AI Support Assistant. The hacker would instruct the system to change the registered email to their own, and after entering an 8-digit verification code, they received a password reset link. This exploit compromised several high-profile accounts, including the inactive Barack Obama White House account, which was briefly defaced, global beauty retailer Sephora, and the personal account of US Space Force Chief Master Sergeant John Bentivegna. This matters because it highlights the ongoing need for robust security measures in AI-powered systems.