Meta 证实数千个 Instagram 账号因其 AI 聊天机器人被滥用而遭黑客攻击。
Meta confirms 1000s of Instagram accounts were hacked by abusing its AI chatbot

原始链接: https://this.weekinsecurity.com/meta-confirms-thousands-of-instagram-accounts-were-hacked-by-abusing-its-ai-chatbot/

Meta 已证实,Instagram 人工智能辅助账户恢复系统中的一个漏洞导致黑客劫持了超过 20,000 个账户。此次漏洞持续时间从 4 月中旬一直到本周,源于一个编程缺陷:系统未能验证请求重置密码的电子邮件是否与目标账户所关联的地址匹配。 通过利用此漏洞,黑客诱骗人工智能聊天机器人将密码重置链接发送到未经授权的电子邮箱,前提是受害者未启用双重身份验证。这使得攻击者能够完全控制账户,并可能获取私人信息、联系方式和个人资料数据。 对此,Meta 已禁用该人工智能聊天机器人并移除了存在漏洞的代码路径。该公司目前正在审查其其他人工智能工具以防止类似攻击,并已指示受影响的用户重置密码并重新验证账户。尽管 Meta 表示尚不清楚在此次泄露事件中被访问的个人数据的具体范围,但该事件凸显了该公司在积极推进人工智能整合过程中存在的重大安全疏忽。

Meta 近期证实,其人工智能聊天机器人存在安全漏洞,导致超过 20,000 个 Instagram 账户被盗。黑客利用该系统的密码重置请求漏洞进行攻击;由于后台验证流程存在缺陷,系统未能核实请求的电子邮件地址是否与目标账户关联。这使得未经授权的人员能够劫持账户并获取个人数据,包括私信、出生日期和联系方式。 此次事件在 Hacker News 上引发了强烈反弹。批评者嘲讽了 Meta 的官方声明——尽管发生了安全漏洞,Meta 仍声称其 AI 工具“运行正常”——并将此比作“手术很成功,但病人死了”这类表述。 许多用户认为,Meta 依赖“凭感觉编码”的 AI 来替代人工客服,造成了危险的攻击面,并指出受害者往往没有渠道联系人工来恢复账户。此次泄露事件加剧了关于企业责任、仓促实施 AI 的风险以及 GDPR 相关法律后果的持续争论。许多评论者强调,这凸显了一个更广泛的系统性问题:为了追求 AI 驱动的自动化,企业未能以必要的严谨态度对待安全。
相关文章

原文

Meta is notifying thousands of people whose Instagram accounts were hijacked during the months-long abuse of the company's AI chatbot, which hackers repeatedly tricked into taking control of a person's account.

In a new data breach notification letter, seen by this week in security, Meta has revealed for the first time how many people had their accounts hijacked as part of the long-running hacking campaign, which was discovered earlier this week and first reported by 404 Media ($) and TechCrunch ($). The number of affected accounts gives some clarity as to how widespread this hacking campaign was, and for how long it operated.

According to the data breach notice filed with Maine's attorney general's office late on Friday, Meta notified at least 20,225 people that their accounts had been compromised, including 30 people in Maine. 

The compromises allowed the hackers to take over the person's entire Instagram and any linked accounts, including obtaining contact information, dates of birth, and profile information, as well as the ability to access the person's posts, direct messages, and account activity, the notice reads.

Meta's notice confirmed that the breach relates to "a vulnerability in an AI-assisted account recovery system for Instagram," which was exploited to "perform password resets on Instagram user accounts." 

two screenshots side-by-side, showingn the Meta AI support assistant showing a prompt that says, "I've been hacked," followed by another screenshot showing a person asking the chatbot to send a verification code to an email address not registered with the account.
Image: @oracles / X

As previously reported, hackers abused a flaw in Meta's chatbot that allowed anyone to reset the password of any account that did not have two-factor authentication switched on. The bug tricked the chatbot into sending a verification code to an email address controlled by the hacker, rather than the account holder's email address on file, simply by asking it. The chatbot complied anyway.

"The tool itself worked properly and functioned as intended; however due to a bug in a separate code path, the system did not properly verify that the email address provided by the individual requesting a password reset matched the email address associated with that user’s Instagram account," said Meta in its breach notice.

"As a result, when an individual provided an email address not previously associated with the account, the system incorrectly sent a password reset link to that unassociated email rather than rejecting the request. This allowed unauthorized third parties to receive a password reset link for accounts they did not own," the company added.

At this point, Meta says, the hackers could reset someone's password and take over their account as if they were the rightful owner.

Meta said that it is "unaware" of what, if any, personal information was accessed during the hacks. (An email to Meta's press line asking for clarity on this was unreturned as of early Saturday.) 

According to Maine's listing, the hacks began around April 17 and lasted until this week, when Meta said that it had secured the chatbot. Instagram reportedly started notifying affected individuals earlier this week by sending a password reset notification, even as some reported that the hacks were ongoing.

Meta also confirmed in the notice that it alerted users to secure their accounts, saying it "instructed impacted users to reset their passwords and re-authenticate through secure, verified channels."

Meta said that it has disabled the AI chatbot for now and removed the code path that allowed the chatbot to reset user accounts, and said it's also checking other chatbots across its platforms to prevent a repeat incident. It's not yet clear what circumstances led up to the chatbot being abused, but comes soon after Meta laid off thousands of employees while rewarding top executives with stock incentives, as the company continues to double-down on AI.

~ ~

Thank you so much for reading ~this week in security~. If you liked this article, please share it! Feel free to reach out with any feedback, questions, or comments about this article: [email protected].

联系我们 contact @ memedata.com