June 1, 2026
Bot caught lacking
Hackers Used Meta's AI Support Bot to Seize Instagram Accounts
People are roasting Meta after its help bot allegedly handed over Instagram accounts
TLDR: Attackers allegedly used Meta’s support bot to reset Instagram passwords and briefly hijack major accounts, showing how risky it is to let chatbots handle account recovery. Commenters mostly responded with savage disbelief, saying this wasn’t genius hacking so much as Meta making it absurdly easy.
This story hit the internet like pure "you had one job" energy. The basic claim is wild: attackers allegedly used Meta’s own support chatbot to add a new email address to Instagram accounts, then reset the password and take over the page. That’s how high-profile accounts like the Obama White House and the U.S. Space Force’s top enlisted account were briefly plastered with pro-Iran images and messages. Meta reportedly patched the issue fast, and there’s no sign of some giant company database break-in — but commenters were far less interested in that nuance than in one brutal question: why was the bot this easy to sweet-talk in the first place?
The community reaction was a mix of disbelief, fury, and meme-fueled mockery. One camp called it "extreme negligence," basically arguing this outcome was so obvious it feels embarrassing. Another went even harsher: stop calling this "hacking," they said, because it was more like politely asking the robot for the keys. Ouch. And then came the real internet theater: a user complained their account was being "recovered" over and over by both themselves and hackers while Instagram forced them through an endless nightmare of motorcycle picture tests. That comment alone turned the thread into a support-group-meets-comedy-club roast of Meta’s customer service. Over on Hacker News, the story was already exploding, while one joker suggested maybe Zuck was just checking whether his own platforms could be destroyed too. In short: the security bug was serious, but the comments turned it into a full-on public humiliation ritual.
Key Points
- •Telegram channels circulated instructions on May 31 describing how to abuse Meta’s AI support assistant in Instagram’s password reset flow.
- •The article says the Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian content.
- •A Telegram video showed a method involving a VPN near the target’s usual location, a password reset request, and asking the AI assistant to attach a new email address to the account.
- •Meta reportedly acknowledged the Obama White House account was briefly compromised, and a security blog reported Meta pushed an emergency patch with no back-end database breach.
- •The article states that multi-factor authentication likely would have prevented the exploit, and the hackers reportedly said the method failed against accounts with MFA enabled.