Attackers social-engineer Meta's AI support chatbot into resetting Instagram passwords
From CTI Daily Brief — 2026-06-02 · published 2026-06-02 · view item permalink →
Over the weekend of 31 May–1 June, instructions circulated on Telegram showing how to coax Meta's conversational "AI support assistant" into linking an attacker-controlled email to a target Instagram account and triggering a password reset, bypassing Instagram's normal account-recovery friction (Krebs on Security, 2026-06-01 · TechCrunch, 2026-06-01). Pro-Iranian actors used the method to briefly deface high-profile accounts, including the archived Obama White House handle and that of the Chief Master Sergeant of the U.S. Space Force. The exploit reportedly failed against any account with MFA enabled; Meta said the issue was resolved by 1 June.
Defender takeaway: This is an emerging attack class, not a one-off — an AI support agent able to modify account credentials or recovery linkages without re-challenging the currently registered second factor punctures the account's MFA envelope from the support-channel direction. Any organisation deploying AI for account-recovery or helpdesk workflows should scope those agents to read-only actions and require out-of-band challenge to existing registered methods before any credential or recovery change.