Meta Says 20,000 Instagram Accounts Hacked via AI Tool Abuse
Meta disclosed that approximately 20,000 Instagram accounts were compromised due to abuse of an AI-powered account recovery support tool called High Touch Support (HTS). The vulnerability allowed attackers to request password reset links sent to email addresses not associated with the targeted accounts, enabling unauthorized access if two-factor authentication was not enabled. The flaw was caused by a bug in a code path that failed to verify the email address ownership properly. Meta disabled the tool, invalidated the reset links generated by the exploit, reset passwords of affected accounts, and enrolled them in mandatory security checkpoints. Notifications and 2FA recommendations will be sent to impacted users. It remains unclear if personal data was accessed, but attackers could have viewed profile and interaction information. The incident was reported to authorities and discovered on May 31, 2026.
AI Analysis
Technical Summary
An abuse of Meta's Instagram High Touch Support (HTS) AI-powered account recovery tool allowed attackers to reset passwords by requesting reset links sent to email addresses not linked to the targeted accounts. This occurred due to a bug in a separate code path that did not properly verify that the provided email matched the account's registered email. Attackers exploited this to gain control over accounts lacking two-factor authentication. Meta disabled the tool, invalidated reset links, reset passwords, and enrolled affected accounts in security checkpoints. The total potentially impacted accounts number approximately 20,000, including high-profile targets. Meta is notifying users and recommending enabling 2FA. The vulnerability was discovered on May 31, 2026, and reported to authorities.
Potential Impact
Attackers were able to take over Instagram accounts by exploiting a flaw in the password reset process, affecting roughly 20,000 accounts. Unauthorized parties could reset passwords and access accounts without 2FA enabled. Potentially compromised data includes profile information, email addresses, phone numbers, dates of birth, direct messages, social media posts, and account activity history. High-profile accounts were among those compromised and reportedly sold on the dark web. The incident undermines user account security and privacy.
Mitigation Recommendations
Meta has disabled the vulnerable High Touch Support tool and will only re-enable it after fixing the underlying bug. Password reset links generated by the exploit have been invalidated. Affected accounts have been reset and enrolled in mandatory security checkpoints. Meta plans to notify impacted users and recommend reviewing security settings and enabling two-factor authentication. Users should enable 2FA to protect their accounts from unauthorized access. No further action is required until Meta re-enables the tool with a fix.
Meta Says 20,000 Instagram Accounts Hacked via AI Tool Abuse
Description
Meta disclosed that approximately 20,000 Instagram accounts were compromised due to abuse of an AI-powered account recovery support tool called High Touch Support (HTS). The vulnerability allowed attackers to request password reset links sent to email addresses not associated with the targeted accounts, enabling unauthorized access if two-factor authentication was not enabled. The flaw was caused by a bug in a code path that failed to verify the email address ownership properly. Meta disabled the tool, invalidated the reset links generated by the exploit, reset passwords of affected accounts, and enrolled them in mandatory security checkpoints. Notifications and 2FA recommendations will be sent to impacted users. It remains unclear if personal data was accessed, but attackers could have viewed profile and interaction information. The incident was reported to authorities and discovered on May 31, 2026.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
An abuse of Meta's Instagram High Touch Support (HTS) AI-powered account recovery tool allowed attackers to reset passwords by requesting reset links sent to email addresses not linked to the targeted accounts. This occurred due to a bug in a separate code path that did not properly verify that the provided email matched the account's registered email. Attackers exploited this to gain control over accounts lacking two-factor authentication. Meta disabled the tool, invalidated reset links, reset passwords, and enrolled affected accounts in security checkpoints. The total potentially impacted accounts number approximately 20,000, including high-profile targets. Meta is notifying users and recommending enabling 2FA. The vulnerability was discovered on May 31, 2026, and reported to authorities.
Potential Impact
Attackers were able to take over Instagram accounts by exploiting a flaw in the password reset process, affecting roughly 20,000 accounts. Unauthorized parties could reset passwords and access accounts without 2FA enabled. Potentially compromised data includes profile information, email addresses, phone numbers, dates of birth, direct messages, social media posts, and account activity history. High-profile accounts were among those compromised and reportedly sold on the dark web. The incident undermines user account security and privacy.
Mitigation Recommendations
Meta has disabled the vulnerable High Touch Support tool and will only re-enable it after fixing the underlying bug. Password reset links generated by the exploit have been invalidated. Affected accounts have been reset and enrolled in mandatory security checkpoints. Meta plans to notify impacted users and recommend reviewing security settings and enabling two-factor authentication. Users should enable 2FA to protect their accounts from unauthorized access. No further action is required until Meta re-enables the tool with a fix.
Technical Details
- Article Source
- {"url":"https://www.securityweek.com/meta-says-20000-instagram-accounts-hacked-via-ai-tool-abuse/","fetched":true,"fetchedAt":"2026-06-08T06:48:35.777Z","wordCount":1275}
Threat ID: 6a2665c3e29bf47b50afdd1c
Added to database: 6/8/2026, 6:48:35 AM
Last enriched: 6/8/2026, 6:48:44 AM
Last updated: 6/8/2026, 8:50:52 AM
Views: 9
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.