manipulate

Forget the Instagram exploit for a minute. Here’s the real story nobody is talking about. AI is here to stay. Every day we trust it with a little more. It automates work, saves time, and in many cases does a pretty good job. The Instagram incident is a glimpse of what’s coming. Whether this specific issue was prompt injection, workflow abuse, or something else entirely almost doesn’t matter. What matters is that we’re putting AI in front of more and more systems and giving it access to more and more data. This won’t be the last time we see something like this. Today it was an Instagram account. Tomorrow it could be your bank account, your smart home, your car, or something else entirely. Every week there are new MCP servers, integrations, agents, and tools being released. Many of them have access to data and permissions that people assume are private and secure. The uncomfortable reality is that large language models are susceptible to manipulation. They can be tricked. They can be influenced. They can be exploited. Prompt injection and prompt exploitation are not theoretical problems. They are real security challenges, and they’re not easily solved. What happened today wasn’t an isolated event. It was a preview.

I know right now Instagram is the hot topic but just some advice for anyone out there with valuable user names (or just in general) A lot of people in my DM's are missing some context on attack surfaces and threat models. Let me give you some insight. Especially for you Discord users. - Don't accept friend requests from people you don't know - Don't respond to DM's from people you don't know - DON'T CLICK ANY LINK ANYONE SENDS LOL - Don't play weird games you've never heard of on Steam or the web (yes some games have been compromised and will open up access to your PC) - Don't download and install anything anyone sends you I thought this was common knowledge but I am hearing some horror stories.

Forget the Instagram exploit for a minute. Here’s the real story nobody is talking about. AI is here to stay. Every day we trust it with a little more. It automates work, saves time, and in many cases does a pretty good job. The Instagram incident is a glimpse of what’s coming. Whether this specific issue was prompt injection, workflow abuse, or something else entirely almost doesn’t matter. What matters is that we’re putting AI in front of more and more systems and giving it access to more and more data. This won’t be the last time we see something like this. Today it was an Instagram account. Tomorrow it could be your bank account, your smart home, your car, or something else entirely. Every week there are new MCP servers, integrations, agents, and tools being released. Many of them have access to data and permissions that people assume are private and secure. The uncomfortable reality is that large language models are susceptible to manipulation. They can be tricked. They can be influenced. They can be exploited. Prompt injection and prompt exploitation are not theoretical problems. They are real security challenges, and they’re not easily solved. What happened today wasn’t an isolated event. It was a preview.

Forget the Instagram exploit for a minute. Here’s the real story nobody is talking about. AI is here to stay. Every day we trust it with a little more. It automates work, saves time, and in many cases does a pretty good job. The Instagram incident is a glimpse of what’s coming. Whether this specific issue was prompt injection, workflow abuse, or something else entirely almost doesn’t matter. What matters is that we’re putting AI in front of more and more systems and giving it access to more and more data. This won’t be the last time we see something like this. Today it was an Instagram account. Tomorrow it could be your bank account, your smart home, your car, or something else entirely. Every week there are new MCP servers, integrations, agents, and tools being released. Many of them have access to data and permissions that people assume are private and secure. The uncomfortable reality is that large language models are susceptible to manipulation. They can be tricked. They can be influenced. They can be exploited. Prompt injection and prompt exploitation are not theoretical problems. They are real security challenges, and they’re not easily solved. What happened today wasn’t an isolated event. It was a preview.

- You have not secured impacted accounts - They are not getting a password reset notification, they're getting a notification that their account has been successfully stolen - "we are now working to restore access to affected individuals" This is the same sentence as the last one but flipped. Contradictory. - Why aren't we getting official statements instead of vague tweets