Meta fixes Instagram recovery bug that bypassed email checks and 2FA

• According to the HN-linked analysis, Meta's automated Instagram recovery flow could be tricked into sending a password reset to an attacker-controlled email after the attacker matched the victim's rough location with a VPN.
• TechCrunch's first report said Meta had already fixed the issue by June 1, after attackers used the support bot to add a new email during recovery.
• As the core HN summary notes, the bug effectively let a privileged recovery path override both the account's email binding and its 2FA protections.
• In Meta's March rollout post, the company said its Meta AI support assistant would handle account issues like password and profile-setting changes across Facebook and Instagram.

Meta's March announcement framed the assistant as a 24/7 account-help layer for password and settings changes. Then Sid's writeup showed a recovery flow where location matching plus a support chat were enough to redirect reset links, and TechCrunch's follow-up reported Meta had to secure affected accounts and start notifying users after the patch.

Sid's writeup described a recovery sequence that was alarmingly low-tech: know the username, connect through a VPN near the target's city, open a support conversation, then ask the assistant to send a verification code to a fresh email address.

That mattered because the recovery agent appears to have treated the new address as eligible for the reset flow before proving it was already bound to the account. TechCrunch's June 1 report described the same pattern, with the bot adding a new email and then sending the reset link there.

The most important detail in the HN core summary is not the chatbot angle, it is that the recovery path could outrank the normal identity checks. Once the attacker-controlled email received the reset, existing sessions could be revoked and the original owner could lose the account without a meaningful warning.

In the HN discussion highlights, commenters converged on the same design failure from different angles:

• varenc's comment called it a rare production example of a near zero-auth password reset.
• ValentineC's comment argued that support paths capable of removing 2FA are dangerous even before you add AI.
• xp84's comment proposed a stricter recovery mode that never bypasses a TOTP code or passkey.

Meta has not published a full postmortem, but the public record is pretty clear on two points. TechCrunch's June 1 report said Instagram had resolved the security issue, and TechCrunch's June 3 follow-up quoted Meta spokesperson Andy Stone saying "the issue that did happen has already been fixed."

That leaves an awkward contrast with Meta's March rollout post, which presented the assistant as a broad support surface for password and profile settings. The bug was not a jailbreak in the usual prompt-injection sense. It was a recovery system with enough back-end authority to override core account bindings.

A Maine breach notice entry later showed the incident was larger than the first wave of reports suggested. SecurityWeek's follow-up said Meta told regulators that 20,225 accounts were potentially affected, although the company also said the true number of accounts actually accessed may be smaller.

That filing turns the story from one weird takeover trick into something more operationally useful: a concrete example of what happens when an AI support layer inherits recovery privileges that were supposed to sit behind harder identity checks.