Hackers likely hijacked over 20,000 Instagram accounts with Meta’s AI chatbot

Meta confirmed that hackers took over approximately 20,225 Instagram accounts by exploiting a bug in the company's AI support chatbot. The vulnerability allowed attackers to hijack accounts without two-factor authentication by requesting a password reset through the chatbot. According to Meta, the issue arose from a bug in a separate code path that failed to verify the email address provided for the password reset. The company attributes the exploit to a technical glitch rather than a malfunction of the AI chatbot itself.

✦ AI-generated summary