Meta disclosed that a flaw in Instagram’s High Touch Support account recovery system let unauthorized third parties trigger password resets and hijack user profiles. The issue affected 20,225 users, and Meta disabled the AI assistant, invalidated reset links, and began adding stronger validation before redeployment. #Meta #Instagram #HighTouchSupport #MaineAttorneyGeneral
Keypoints
- An Instagram account recovery flaw enabled unauthorized password resets.
- Meta filed an incident notification with the Maine Attorney General.
- The bug was in the High Touch Support automated recovery tool.
- 20,225 Instagram accounts were compromised through the issue.
- Meta disabled the AI assistant and invalidated all outstanding reset links.
Read More: https://securityonline.info/instagram-account-recovery-flaw/