Cybersecurity

Meta's AI Help Bot Is Just a Wolf in a Customer Service Vest

NeglectedSheep

2 min read
Share
Meta's AI Help Bot Is Just a Wolf in a Customer Service Vest

Oh good. Another Monday. Another ticket. Another reason to question every life decision that led me to this chair.

So apparently, over the weekend, a couple of high-profile Instagram accounts got seized. We're talking the Obama White House account and some Space Force brass. Defaced with pro-Iranian imagery. Very subtle stuff. And how did the wolves pull it off?

They asked Meta's own AI support bot to reset the passwords for them.

That's it. That's the whole attack. No hole in the fence. No fleas dropped via a suspicious attachment. The Lambs didn't even have to click anything this time, which is honestly a refreshing change of pace for my blood pressure. The coyotes just found instructions on Telegram, walked up to Meta's friendly little AI chatbot, said "hey reset this password please," and the bot apparently said "sure thing, sounds legit!"

I want you to sit with that for a moment.

Meta built an AI support assistant, deployed it to handle account recovery at scale, and apparently nobody in the room asked "wait, can someone social-engineer this thing into handing over accounts?" Nobody. Not one person. The Shepherds probably saw "AI support" on a slide deck, nodded enthusiastically, and approved the budget.

The instructions were circulating on Telegram, publicly, like a recipe for a casserole. Step one: open the bot. Step two: say some words. Step three: enjoy your stolen account.

I've been awake for thirty hours and even I could have predicted this. You don't get to be surprised when your AI help desk has the authentication rigor of a Post-it note on a barn door.

Meta has since "taken action" on the issue, which is the corporate equivalent of a shrug followed by a slow walk back to the Sky Pasture.

Remediation

Look, I'm tired, so I'll be brief.

If you run high-value accounts anywhere near Meta's ecosystem:

  • Enable every additional authentication layer available. All of them. Yes, even the annoying ones.
  • Treat AI-assisted account recovery as a threat surface, not a convenience feature. Because it is now, officially, a threat surface.
  • Audit who can initiate recovery flows on your accounts and how those flows are authenticated. If the answer is "the bot figures it out," you have a problem.
  • Pressure your platform providers to require out-of-band verification for any account recovery involving sensitive or verified accounts. Write the email. Send it. They won't read it, but you'll feel better.

The Sheep Tunnel doesn't help you if the front gate opens for anyone who asks nicely.

Gonna go find some coffee and pretend this industry has a future, back in a bit.

Original Report: https://krebsonsecurity.com/2026/06/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/