Independent business news · Every fact sourced Editorial Standards · Affiliate Disclosure
Business news for people who still write checks
Small Business

They Didn't Hack You. They Talked Meta's AI Into Handing Over Your Account.

The exploit that seized Instagram accounts at the end of May didn't break anything. It just asked politely. And it failed against every account that had two-factor switched on.

Photo: Elexfedi / Wikimedia CommonsCC BY-SA 4.0

Picture the flower shop that gets most of its orders through Instagram. Or the contractor whose entire portfolio of finished kitchens lives on that account. For a lot of small businesses, that login isn't a social media profile. It's the storefront, the catalog and the customer list, all in one place, and there's no backup.

At the end of May, people figured out how to take those accounts without breaking into anything.

How it worked

The method, as reported by security journalist Brian Krebs, was disgracefully simple. Four steps, no malware, no stolen password.

First, the attacker connected through a VPN with an IP address in the target's own hometown, so nothing looked unusual. Then they started a normal password reset. When Instagram offered the option to chat with Meta's AI support assistant, they took it.

And then they told the bot to link the account to a different email address. Their own.

The bot did it. It sent a one-time code to the attacker's email, the attacker typed the code back in, and the account was theirs.

Instructions for doing this circulated on Telegram on May 31. Krebs reports that among the accounts taken were the Obama White House Instagram and the account of the Chief Master Sergeant of the U.S. Space Force. Some were briefly defaced with pro-Iranian images. He also reports that short, desirable usernames seized in the wave were being resold, with the traffic allegedly running past half a million dollars.

Meta pushed out an emergency fix that weekend. Andy Stone, Meta's communications director, said on X that the issue had been resolved and affected accounts were being secured. The company said no back-end database had been breached, which is true and also beside the point. Nothing had to be breached.

"AI chatbots create interesting new attack surface, and we're likely going to see a lot more of these kinds of attacks." — Ian Goldin, threat researcher, Lumen's Black Lotus Labs, quoted by Krebs on Security

The one line that matters

Buried in the reporting is the sentence a small business owner should tape to the monitor.

The exploit failed to work against any account that had multi-factor authentication enabled. Not the fancy kind. Even plain SMS codes were enough.

That's the whole defense. A feature Instagram has offered for years, that takes about two minutes to switch on, and that a great many small business accounts still don't use because it's mildly annoying to log in.

If you run your business on an Instagram, Facebook or WhatsApp account, and you have not turned on two-factor authentication, do that before you finish reading this. Settings, then Accounts Center, then Password and security, then Two-factor authentication.

Why this keeps happening to social accounts specifically

There's a structural reason a bot ended up holding the keys, and it's worth understanding because it isn't going away.

Meta serves billions of accounts and employs a support staff sized for a company that would rather not talk to them. One security write-up Krebs cites put it bluntly: Instagram has "notoriously poor human support infrastructure." An AI assistant is the answer to that problem — cheaper, instant, always awake. It is also, as of May 31, a support agent that could be talked into moving an account's email address.

Our read, not a finding by anyone quoted here: the same economics are pushing AI support agents into banks, payment processors and payroll platforms right now. The Instagram case is a small preview. A chatbot that can perform account actions is a chatbot that can be argued with, and the fraud playbook for arguing with humans at a help desk is decades old and very well developed.

If you lose the account anyway

Recovery is genuinely hard, which is why prevention is worth the two minutes. Meta's own account-recovery flow is at instagram.com/hacked. Report the takeover there first.

Then treat the email address on the account as compromised too, because it may be the actual target. Change that password, and turn on two-factor there as well.

If money moved — a customer paid a scammer through a hijacked business account, say — report it to the FBI's Internet Crime Complaint Center and to the FTC at ReportFraud.ftc.gov. Neither will get your account back. Both build the record that eventually produces an indictment.

What This Means for You

If your business lives on social media: turn on two-factor authentication today, on every account, including the email address behind them. In this incident that single setting was the difference between losing the account and not being touched. And ask yourself the harder question underneath it: if that account vanished tonight, do you have your customers' contact details anywhere else?

If you're 55 or older: the wider lesson has nothing to do with Instagram. Companies are replacing human support desks with AI assistants that can change your account details. Somebody who can convince the bot they're you does not need your password. Every account you own that holds money deserves a second lock on it, and a phone number you can call that reaches a person.

Sources

A note on sourcing. The account of how this exploit worked comes from Krebs on Security, which is a secondary source — it is reporting on what attackers and Meta did, not publishing its own data. We could not independently verify the resale figure or the full list of accounts affected, and we have not repeated numbers we could not stand behind. Meta's public statement is linked above.

Disclaimer: This article is news and general information only. It is not security, legal, or financial advice.

Found an error? Tell us — we correct in public.