Instagram users locked out after Meta AI abused to steal accounts
Summary
Attackers have successfully hijacked Instagram accounts by exploiting Meta's AI-powered support systems. The attackers tricked the AI into believing they were the legitimate account owners, leading to users being locked out of their accounts.
IFF Assessment
FOE
This incident highlights a new attack vector that leverages AI systems, posing a significant threat to user account security and demonstrating a vulnerability that attackers can exploit.
Defender Context
This incident serves as a stark warning about the potential security risks associated with AI-driven support systems. Defenders should anticipate adversaries attempting to find and exploit similar AI vulnerabilities in other platforms and services, focusing on social engineering tactics that target automated processes.