That's hardly a bug. People ask an AI bot to send them someone's account recovery codes, and the bot delivers, because that's how it is trained to work. Sure, they try to build guardrails to prevent this from happening, but the bot is probabilistic: maybe it stays within the rails, maybe it doesn't.
Janne Hämäläinen
Meta blames a bug on an exploit that allowed hackers to ask its AI support bot to link a victim’s account with their own email.
Hackers could’ve obtained email addresses, phone numbers, birthdates, and more.
