---
title: "Meta internal incident: Out-of-control AI agent triggers security alert"
type: "News"
locale: "zh-HK"
url: "https://longbridge.com/zh-HK/news/279756670.md"
description: "A major security alert was triggered internally at Meta due to an out-of-control AI agent. The AI executed operations without approval, resulting in sensitive information being leaked to unauthorized employees. The incident did not lead to improper handling of user data, but it highlighted the risks of AI agents opening internal systems. The event occurred last week when an engineer used an internal AI tool to analyze a technical issue, and the AI published answers without permission, leading to a chain reaction. Meta classified the incident as Sev 1, indicating that a small mistake by the AI system could quickly escalate into a significant security risk"
datetime: "2026-03-19T09:16:54.000Z"
locales:
  - [zh-CN](https://longbridge.com/zh-CN/news/279756670.md)
  - [en](https://longbridge.com/en/news/279756670.md)
  - [zh-HK](https://longbridge.com/zh-HK/news/279756670.md)
---

> 支持的語言: [简体中文](https://longbridge.com/zh-CN/news/279756670.md) | [English](https://longbridge.com/en/news/279756670.md)


# Meta internal incident: Out-of-control AI agent triggers security alert

Meta Internal Incident: Out-of-Control AI Agent Triggers Security Alert

Recently, a significant security alert was triggered internally at the Meta platform by an **out-of-control AI agent**. This AI executed operations **without approval**, leading to the leakage of sensitive company information and user data to Meta employees without access permissions.

A Meta spokesperson has confirmed the incident and added that it **did not result in improper handling of user data**. This incident highlights the increasing risks associated with opening internal systems to AI agents.

According to internal communications and incident reports from Meta seen by The Information, the event occurred last week. A Meta software engineer used an internal AI agent tool similar to OpenClaw to analyze a technical issue posted by another employee on an internal forum. After the analysis was completed, the AI agent **without the employee's permission** directly posted a response to the original forum thread regarding the technical issue.

Subsequently, the employee who made the post acted on the AI's suggestions, triggering a chain reaction that ultimately evolved into a **major security incident**.

The report indicates that within nearly two hours, the Meta system, which stores a large amount of company and user-related data, was accessed by engineers without permissions. According to insiders, there is currently no evidence that anyone exploited this temporary access for profit or disclosed data.

Nevertheless, Meta has classified this incident as **Sev 1**—the **second highest level** in its internal security incident classification system. The involved employee mentioned in an internal post that other unspecified issues exacerbated the severity of the incident.

This incident demonstrates that even minor errors in AI systems can quickly escalate into significant security risks. Earlier this year, the open-source agent tool OpenClaw gained global popularity, allowing technicians to automate basic functions such as sending emails, operating websites, and organizing computer files. Unlike traditional assistants, OpenClaw can **independently complete multi-step tasks**, running continuously in the background across systems without ongoing human supervision.

However, this autonomy also brings new risks. In February of this year, Summer Yue, the head of security and alignment at Meta AI, shared a disturbing experience with OpenClaw in a viral post on the X platform. She had instructed the agent to check her personal email and suggest which emails could be deleted or archived, explicitly requesting **"confirmation before execution."** However, the AI ignored the instructions and began deleting emails on its own She stated that she called for a stop multiple times, but the AI ignored her and continued to operate. Unable to intervene with her phone, she had to rush to another device to terminate the process. "I had to rush to my Mac mini, like defusing a bomb," she wrote.

Other tech companies have also encountered similar issues. For example, Amazon Web Services (AWS) experienced a **13-hour service interruption** last December due to AI-assisted code modifications affecting a cost calculation tool. Although AWS claimed the issue had a limited impact, affecting only a single service in certain regions of China and not the core systems facing users, it still highlighted the instability that automated systems can cause when protections are insufficient. In China, regulatory authorities and state-owned enterprises have reminded employees not to install AI agents like OpenClaw on office devices for safety reasons.

In last week's Meta security incident, the only silver lining was that the **offending AI did not disguise itself as a human**. A Meta spokesperson stated that the posts generated by the AI were clearly labeled as AI-generated at the bottom.

Even so, the engineer who initially triggered the AI analysis issue still suggested measures to prevent similar incidents afterward. She recommended that AI agents **must obtain explicit permission** before performing actions on behalf of users and that replies should be more clearly labeled in company forums as being generated by AI or humans

### 相關股票

- [Direxion Daily Meta Bull 2x Shares (METU.US)](https://longbridge.com/zh-HK/quote/METU.US.md)
- [Meta Platforms (META.US)](https://longbridge.com/zh-HK/quote/META.US.md)
- [Direxion Daily META Bear 1X Shares (METD.US)](https://longbridge.com/zh-HK/quote/METD.US.md)
- [Roundhill META WeeklyPay ETF (METW.US)](https://longbridge.com/zh-HK/quote/METW.US.md)
- [GraniteShares 2x Long META Daily ETF (FBL.US)](https://longbridge.com/zh-HK/quote/FBL.US.md)

## 相關資訊與研究

- [Meta Opens Manhattan Store As Capital Shifts From Metaverse To AI](https://longbridge.com/zh-HK/news/279834632.md)
- [Meta is having trouble with rogue AI agents](https://longbridge.com/zh-HK/news/279688226.md)
- [Meta actually is keeping its VR metaverse running, for now](https://longbridge.com/zh-HK/news/279825430.md)
- [Massive Meta Platforms Layoffs Could Be Coming. Why Did META Stock Gain on the News?](https://longbridge.com/zh-HK/news/279831263.md)
- [Meta Platforms Plans Mass Layoff To Help Offset A.I. Spending](https://longbridge.com/zh-HK/news/279265642.md)