Hacking Meta’s AI Chatbot

Hackers demonstrated an account-takeover technique that exploited Meta’s AI support chatbot to add an attacker-controlled email, accept a verification code, and trigger a password reset for Instagram accounts; a video showed the step-by-step process. Meta stated the issue has been fixed, but the report does not indicate how many users were affected. The incident highlights risks of delegating sensitive account-recovery actions to LLM-based chat interfaces.