A major security breach involving Instagram has raised concerns about Meta’s growing reliance on artificial intelligence for sensitive user support functions. Hackers reportedly manipulated Meta’s AI-powered support chatbot into resetting account credentials without properly verifying user identities, allowing unauthorized access to several high-profile accounts, including the dormant Obama White House Instagram page, beauty retailer Sephora, and a senior U.S. Space Force official’s account.
Cybersecurity experts described the incident as a classic example of a “prompt injection” attack, where attackers trick an AI system into performing actions it should not authorize. The breach has intensified scrutiny of Meta’s aggressive AI strategy, which includes significant workforce reductions and plans to invest up to $145 billion in AI infrastructure. Experts warned that granting AI systems broad authority over account recovery and security functions without adequate safeguards can create serious vulnerabilities.
Meta said it has resolved the issue and is working to secure affected accounts. However, the incident has renewed broader industry concerns about the risks of deploying AI agents in critical roles. Security analysts noted that similar exploits are likely to become more common as organizations increasingly automate customer support and security processes, emphasizing the need for stronger oversight and access controls around AI-powered systems.
Pic Courtesy: google/ images are subject to copyright
