VICE PRESIDENT, OFFICE MANAGEMENT
Since day one, Peggy has been a dedicated leader at SilverTech and has been a part of every triumph and challenge the agency has seen over two and a half decades. She has witnessed and supported SilverTech's growth from a small staff of 5 working to a thriving team of over 80 individuals working in multiple locations across the U.S.
Peggy seamlessly manages numerous key areas of our company, including office management, human resources, facilities and administration. Behind the scenes, Peggy ensures that everything runs smoothly, acting as the driving force that keeps everyone on track. Company events, employee onboarding, new office fixtures, internal policy, facility moves, benefit administration and key senior leadership decisions have Peggy’s imprint and impact. Peggy is truly instrumental in the past and future success of SilverTech.
By: Anoop Sandhu | 6/1/26
AI is quickly becoming part of the front line of customer experience. It is answering questions, resolving tickets, and in some cases, taking action on behalf of users.
That last part is where things get complicated.
Recent reports show that attackers were able to manipulate Meta’s AI-powered support workflows to take over Instagram accounts. The issue was not a traditional breach. There was no compromised database or exposed infrastructure. Instead, the weakness existed in how the AI assistant handled account recovery requests.
That distinction matters more than it seems.
In this case, attackers interacted directly with Meta’s support chatbot. By crafting seemingly legitimate requests, they were able to convince the system to:
• Add a new email address to a target account
• Receive a password reset code
• Complete the reset and take control of the account
All without accessing the original user’s email or credentials.
The breakdown was not in encryption or infrastructure. It was in logic and decision-making.
Security researchers pointed to a lack of proper identity verification and guardrails in how the AI processed these requests.
In other words, the system did what it was designed to do. It just trusted the wrong inputs.
This is not just a Meta problem. It is a signal of a broader shift happening across digital platforms.
AI-powered support tools are increasingly being given the ability to:
• Trigger password resets
• Update account details
• Initiate workflows tied to identity and access
These are some of the most sensitive actions in any system.
Traditionally, those workflows were tightly controlled through rigid rules. Password resets required confirmed email access. Account changes required multi-step verification. Systems were deterministic.
AI introduces something different. It interprets intent and makes decisions based on context.
That flexibility is powerful. It is also where risk enters.
If an AI system has broad permissions and interprets a malicious request as legitimate, it can execute actions that were never supposed to happen.
The result is not just a bug. It becomes a new class of vulnerability.
Most organizations are already experimenting with AI in customer support, marketing operations, and internal workflows.
In many cases, the goal is the same as Meta’s:
• Reduce friction
• Accelerate resolution times
• Scale support without scaling headcount
These are valid goals. But the moment AI is connected to systems of record or customer identity, the risk profile changes.
High-value workflows such as account recovery, billing updates, and profile changes are exactly where attackers focus. They do not need to breach your entire system. They just need to convince one workflow to approve the wrong request.
As one analysis of AI agents puts it, the real challenge is not whether AI can assist with these tasks. It is whether it can safely participate in decisions that affect identity, access, and trust.
That is the difference between automation and authorization.
From what we are seeing across platforms, the common failure points are consistent:
1. Over-permissioned AI systems
AI agents are given the ability to execute actions directly, rather than acting as an intermediary.
2. Weak identity validation
Systems rely too heavily on conversational signals instead of strict verification steps.
3. Missing guardrails in workflows
There are no hard stops for high-risk actions like credential changes or ownership transfers.
4. Lack of auditability
It becomes difficult to trace why a decision was made or what signals triggered it.
None of these are new problems individually. What AI does is compound them by increasing speed and scale.
The lesson here is not to pull back on AI. It is to be more intentional about where and how it is used.
A more secure model typically includes:
• AI as a decision support layer, not a decision maker for critical actions
• Deterministic controls for anything involving authentication or account recovery
• Clear separation between user interaction and system execution
• Strong audit trails for every automated action
The principle is simple. AI can suggest, summarize, and assist. But authorization should remain governed by systems designed for security, not interpretation.
For organizations focused on customer experience, this can feel like a tradeoff between usability and security.
It does not have to be.
The most effective implementations focus on removing friction in low-risk areas while maintaining rigor in high-risk workflows. That balance is where trust is built.
And trust is ultimately the product.
At SilverTech, we are seeing a growing demand for AI-enabled experiences that go beyond content and into operations.
That includes:
• AI-assisted support tools
• Workflow automation tied to CRM and marketing platforms
• Personalization engines connected to customer data
Our approach is grounded in one core principle. AI should amplify systems, not replace the controls that protect them.
That means designing AI into the architecture from the start, with clear boundaries around what it can and cannot do.
Because as this incident shows, the risk is not always where you expect.
This website uses cookies in order to offer you the most relevant information. Please "Accept & Continue" for optimal site performance.