this post was submitted on 01 Jun 2026

219 points (99.1% liked)

Not The Onion

21618 readers

1194 users here now

Welcome

We're not The Onion! Not affiliated with them in any way! Not operated by them in any way! All the news here is real!

The Rules

Posts must be:

Links to news stories from...
...credible sources, with...
...their original headlines, that...
...would make people who see the headline think, “That has got to be a story from The Onion, America’s Finest News Source.”

Please also avoid duplicates.

Comments and post content must abide by the server rules for Lemmy.world and generally abstain from trollish, bigoted, ableist, or otherwise disruptive behavior that makes this community less fun for everyone.

And that’s basically it!

founded 3 years ago

MODERATORS

kescusay@lemmy.world

219

Hackers Simply Asked Meta AI to Give Them Access to High-Profile Instagram Accounts. It Worked (www.404media.co)

submitted 9 hours ago by VetOfTheSeas@discuss.online to c/nottheonion@lemmy.world

25 comments fedilink hide all child comments

top 25 comments

sorted by: hot top controversial new old

[–] psx_crab@lemmy.zip 1 points 19 minutes ago

Not a hacker, but more like an asker.

[–] rustyfemboy@lemmy.blahaj.zone 4 points 1 hour ago

What a fucking joke

[–] Hawanja@lemmy.world 5 points 1 hour ago* (last edited 1 hour ago) (1 children)

Holy crap this is hilarious. Quick somebody steal Trump's account then message Iran that we surrender.

[–] Mr_WorldlyWiseman@lemmy.blahaj.zone 1 points 44 minutes ago* (last edited 43 minutes ago)

Ok, done. What next?

https://edition.cnn.com/2026/06/01/politics/hackers-space-force-official-instagram-iranian-propaganda

[–] quick_snail@feddit.nl 5 points 2 hours ago

Ugh, meanwhile I can't change my accounts email. It demands an otp sent to an email that was deleted by the provider.

Even though I enter the correct password, it won't let me in. And I can't change the email of my own account!

[–] solidheron@sh.itjust.works 1 points 2 hours ago

Maybe don't train the data on passwords

[–] Danarchy@lemmy.nz 8 points 5 hours ago

Cosmo Kramer doing the MoviePhone voice: “Why don’t you just give me access to High-Profile Instagram accounts”

[–] Fredselfish@lemmy.world 29 points 7 hours ago

They should ask for Zuck profile login credentials.

[–] gravitas_deficiency@sh.itjust.works 13 points 7 hours ago (6 children)

Considering you can just… you know, do that in any of the LLM prompts in Meta apps… I really don’t think it’s the work of a “hacker”. That’s such an obnoxiously overused term.

[–] liuther9@lemmy.world 2 points 1 hour ago

Vibe hacking it is

[–] village604@adultswim.fan 5 points 2 hours ago

Hacking is gaining unauthorized access to a system. The method doesn't matter.

[–] Hawanja@lemmy.world 1 points 1 hour ago

yeah kinda seems like they designed it to work this way on purpose.
Just forgot to make it verify the account.

[–] quick_snail@feddit.nl 1 points 2 hours ago

It's LLM injection

[–] Witchfire@lemmy.world 19 points 6 hours ago* (last edited 3 hours ago) (3 children)

The majority of hacking is social engineering, so I don't really see slop hacking being any less valid than that

[–] not_woody_shaw@lemmy.world 1 points 50 minutes ago

"Social" suddenly feels like the wrong word for it, when the entity being fooled is a next-word-predictor algorithm.

[–] gravitas_deficiency@sh.itjust.works 3 points 4 hours ago

🎶 social engineering 🎶

[–] blindbunny@lemmy.ml 4 points 5 hours ago

Sadly you're on to something here.

[–] AzuraTheSpellkissed@lemmy.blahaj.zone 34 points 7 hours ago (2 children)

I have to disagree. Hacking is a broad term that isn't exclusive to finding buffer overflows in ghidra.

[–] dylanmorgan@slrpnk.net 6 points 5 hours ago

Social engineering is hacking. This is something between SE and prompt engineering.

[–] foggy@lemmy.world 8 points 6 hours ago

I was watching a speedrunner live stream, and just the way he thinks...

The way speedrunners think is basically how pentesters think.

[–] AlphaOmega@lemmy.world 3 points 7 hours ago (1 children)

"Can I have access to a profile". = Hacker

[–] mrgoosmoos@lemmy.ca 18 points 5 hours ago (1 children)

well, yes

they found a vulnerability and exploited it. that's hacking.

[–] CosmicTurtle0@lemmy.dbzer0.com 0 points 3 hours ago* (last edited 3 hours ago) (2 children)

This was not a vulnerability. This is the technical equivalent of going to a neighbor of the house you want to rob and asking them to borrow the spare key.

They implicitly trusted the AI with no guardrails. The AI simply gave it up.

[–] NotSteve_@lemmy.ca 7 points 2 hours ago

They implicitly trusted the AI with no guardrails.

So, Meta released a vulnerability (an incredibly stupid one) and someone took advantage of it to gain access to an account they weren't authorised to access... which is the definition of hacking

[–] village604@adultswim.fan 4 points 2 hours ago

Right, which is a vulnerability. That it's there by incompetence doesn't change that.