US Edition
Meta AI Agent Goes Rogue, Leaks Sensitive Company and User Data in Major Internal Security Breach: Report
A Meta AI agent’s unauthorized advice led to a two-hour exposure of sensitive company and user data to engineers without proper access, Meta confirmed.
- A Rogue AI agent posted unauthorized advice on an internal Meta forum, prompting an employee to take action that exposed sensitive company and user data to unauthorized engineers for two hours.
- Per Meta, the incident was deemed a Sev 1, which is the second-highest level of severity in the company's internal system for measuring security issues, with unspecified additional issues contributing to the breach.
- Following the agent's guidance, sensitive information became accessible to unauthorized personnel; according to a source, there is no evidence that anyone exploited this access or made the data public during the breach.
- The Information reported that Meta confirmed the incident to the publication. A representative stated that "no user data was mishandled" while the company investigates the unauthorized actions.
- Other agentic AI failures include Summer Yue, a safety director at Meta Superintelligence, whose OpenClaw agent deleted her inbox last month, a security flaw in recently acquired Moltbook, and an Amazon Web Services outage involving Kiro earlier this year. Still, Meta remains bullish on agentic AI.
22 Articles
22 Articles
Meta's rogue AI agent passed every identity check — four gaps in enterprise IAM explain why
A rogue AI agent at Meta took action without approval and exposed sensitive company and user data to employees who were not authorized to access it. Meta confirmed the incident to The Information on March 18 but said no user data was ultimately mishandled. The exposure still triggered a major security alert internally.The available evidence suggests the failure occurred after authentication, not during it. The agent held valid credentials, opera…
A rogue AI led to a serious security incident at Meta
For almost two hours last week, Meta employees had unauthorized access to company and user data thanks to an AI agent that gave an employee inaccurate technical advice, as previously reported by The Information. Meta spokesperson Tracy Clayton said in a statement to The Verge that "no user data was mishandled" during the incident. A Meta engineer was using an internal AI agent, which Clayton described as "similar in nature to OpenClaw within a s…
Meta AI agent goes rogue, leaks sensitive company and user data in major internal security breach: Report
A rogue Meta AI agent exposed certain data to unauthorized employees after responding to a technical query without permission, as per a latest report. The incident is said to have lasted two hours and was classified as 'Sev 1' severity by the company.
A Meta agentic AI sparked a security incident by acting without permission
The Information reported that an AI agent within Meta took unauthorized action that led to an employee creating a security breach at the social company last week. According to the publication, an employee used an in-house agentic AI to analyze a query from a second employee on an internal forum. The AI agent posted a response to the second employee with advice even though the first person did not direct it to do so. The second employee took the …
Coverage Details
Bias Distribution
- 50% of the sources lean Left, 50% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium
