this post was submitted on 01 Jun 2026
929 points (99.7% liked)

Technology

85060 readers
4477 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 3 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
929
Hackers Simply Asked Meta AI to Give Them Access to High-Profile Instagram Accounts. It Worked (www.404media.co)
submitted 1 day ago by throws_lemy@lemmy.nz to c/technology@lemmy.world
120 comments fedilink hide all child comments
top 50 comments
sorted by: hot top controversial new old
[–] heartSagan5@lemmy.zip 5 points 1 hour ago

!fuck_ai@lemmy.world

[–] KapmK@piefed.social 15 points 3 hours ago

Let the record show that the most sophisticated LLM in the world is ultimately just a less competent version of Yes Man from New Vegas. And even Yes Man knew his programmer was stupid for designing him that way.

[–] Kaligalis@lemmy.world 13 points 5 hours ago (1 children)

So their chatbot is able to change the email address used to recover an account? I guess, they vibe coded that system.

[–] Test_Tickles@lemmy.world 3 points 47 minutes ago

Probably not, that implies more competency than can really believe involved here.
This is more likely something that an entire team had to force into the code over a holiday weekend because some VP got so fucking wasted that he "forgot" his password (strangely for once, he actually had the right password... But the problem is that he was trying to log into a charcuterie board).

[–] AeonFelis@lemmy.world 19 points 8 hours ago

Even hacking is an AI-backed service nowadays...

[–] SpraynardKruger@lemmy.world 56 points 12 hours ago (1 children)

Vibe hacking

[–] Corkyskog@sh.itjust.works 41 points 11 hours ago (2 children)

Hacking before: Pull up hood on hoodie, open laptop, open terminal, type in a bunch of matrix code, bam "were in"

Hacking now: "Hack into this thing for me" No! "Pretty please?" Access granted!

[–] WolfLink@sh.itjust.works 11 points 5 hours ago (1 children)

Hacking by social engineering has always been far more common than hacking by exploiting code vulnerabilities.

[–] Corkyskog@sh.itjust.works 1 points 3 minutes ago* (last edited 48 seconds ago)

I mean this is what see vs what we will see in movies and media. Don't pretend for one instant that the next movie with a hacking scene won't involve some AI marketing. They will make it something romantic like a poem you have to use to hack into the AI capabilities or something.

[–] anotherspinelessdem@lemmy.ml 16 points 7 hours ago

alias prettyPlease="sudo"

[–] Atherel@lemmy.dbzer0.com 8 points 11 hours ago

Did the chatbot just send the recovery code to a Telegram channel?!? (Picture of phone with broken display)

[–] panda_abyss@lemmy.ca 236 points 1 day ago (19 children)

Why would the LLM tool have access to send recovery emails to non account verified emails at all?

That’s insane.

[–] CaptPretentious@lemmy.world 50 points 19 hours ago

Who else is going to have access to it when you keep laying off all the people?

[–] guitarfosec@infosec.pub 39 points 21 hours ago (2 children)

Because one of the biggest companies on the planet that has issues with account takeovers clearly has no internal red team working on this stuff.

[–] mint_tamas@lemmy.world 22 points 12 hours ago

I guarantee they do have a red team that most likely flagged this as an obvious and severe risk. It was ignored by suits experiencing AI psychosis.

load more comments (1 replies)
[–] vagrancyand@sh.itjust.works 123 points 1 day ago

Because AI bros are incredibly deluded about both the capability of AI, and by extension their own capabilities using AI>

[–] ohshit604@sh.itjust.works 65 points 1 day ago (3 children)

should’ve asked it to delete the database instead, why else would it have that level of permissions.

[–] Digit@lemmy.wtf 8 points 15 hours ago

Heh. Watched an old episode of Scorpion yesterday. The one with the armed hostage-takers who just had the one demand to the social media data mining company, to delete all the data they've mined. I amused myself a lot, by uttering "I like these guys".

[–] rnkn@lemmy.world 6 points 15 hours ago

Little Tommy Drop Tables.

load more comments (1 replies)
load more comments (15 replies)
[–] QueenHawlSera@sh.itjust.works -3 points 6 hours ago (3 children)

So is Gemini the only one of these things competently designed?

[–] rumba@lemmy.zip 16 points 6 hours ago (1 children)

I wouldn't count on it.

Securing these things is a freaking nightmare.

Giving the AI authority is what makes it powerful, it can do what an army of customer service agents can't.

But keeping it reigned in then becomes the same exact level of problem.

The best thing you can do is make tooling with protection and make the AI only use the tooling,

[–] heartSagan5@lemmy.zip 1 points 1 hour ago* (last edited 1 hour ago) (1 children)

Just don’t allow it to do any administrative access.

[–] rumba@lemmy.zip 1 points 38 minutes ago

in as much as possible, I make it write RO tools with keys in vaults, then verify the tools are RO then have it operate the tools with the vaults in a way that it doesn't need to read the creds

If I have the time, i do it all myself, but i don't often have time

[–] 0x0@infosec.pub 7 points 6 hours ago

How on earth did you come to that conclusion from this article

[–] plyth@feddit.org 8 points 6 hours ago (1 children)

What have they done right?

[–] EliteCloneMike@lemmy.zip 3 points 3 hours ago* (last edited 3 hours ago)

Nothing. If it’s Google operated it’s probably full of issues. They are in the process of merging Gemini into their search engine, probably because not enough people are using it and they need to force it on people. Likewise for other chat bots from other companies.

[–] Gullible@sh.itjust.works 215 points 1 day ago (24 children)

I remember playing with the Gandalf security AI showcase/game and every 30 or so prompts, it would spit out massive amounts of raw training data or dev directives. AI just isn’t there yet. If you’re using it for sensitive topics, I’m losing respect for you. There is no gray area. You are an idiot if you give your AI this level of access.

[–] Cethin@lemmy.zip 10 points 16 hours ago (1 children)

It's not just not there yet. This is almost certainly not going the right direction to ever be "there" if there is something that can handle security issues. It's just not the right tool for the job, and I can't understand how so much of our economy is just assuming it is the right tool for every job.

[–] FLP22012005@lemmy.world 1 points 3 hours ago

Surely it will get there if we build enough datacenters?

load more comments (23 replies)
[–] Superorbit@lemmy.ca 25 points 21 hours ago

Another banger from 404 media. This made my day.

[–] its_kim_love@lemmy.blahaj.zone 121 points 1 day ago (6 children)

I had always heard that 99% of hacking is just social engineering. AI has made that 100%.

load more comments (6 replies)
load more comments
view more: next ›