McDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Who Tried the Password ‘123456’
Technology
78
Beiträge
58
Kommentatoren
0
Aufrufe
-
I hate any company that uses or builds AI to screen out hires so, so much. Tagging metadata is OK, but filtering is just evil (am/have been a hiring manager).
The company also added that it’s instituting a bug bounty program to better catch security vulnerabilities in the future. “We do not take this matter lightly, even though it was resolved swiftly and effectively,”
I also hate it more that I can't hate them for doing the right thing.
They only did the right thing after getting caught openly doing the wrong thing, so I'd say I'd still be pissed.
They should have never put the system in place with such a simple vulnerability (which to me) says they take such a laxodasical approach to security that I wouldn't trust them even now.
-
Yup, that was it.
Not a good movie and the tech was atrocious but I love it anyway.
Not a good movie?!? Sir/madam, this is blasphemous.
-
Atrocious!?
“Yo. Check this out guys, this is insanely great, it's got a 28.8 BPS modem!”
Hack the planet, or in this case, hack the Big Mac!
-
Why do you even need a hiring bot for McDonalds? Maybe for managers but a McJob is a McJob.
I help folks with disabilities get jobs, so I'm familiar. I generally avoid fast food for my people, because it's degrading and no one really wants a McJob. That being said, the bot actually makes it easier to apply, and they immediately schedule an interview...because they don't care what your resume says and they just need warm bodies to throw at angry customers. Again, I avoid it for my folks wherever possible.
-
Bash is kill?: (
Years, sadly.
-
Paywall removed: https://archive.ph/sn2Ud
In the future, actual hacking will just involve social engineering corporate ai systems ( aka prompt hijacking )
-
Hack the planet, or in this case, hack the Big Mac!
"You could sit at home, and do like absolutely nothing, and your name goes through like 17 computers a day. 1984? Yeah right, man. That's a typo."
lol, 17
-
Paywall removed: https://archive.ph/sn2Ud
"Spaceballs: the HR Robot"
Seriously though, who the fuck uses 123456 as the password for anything? The morons pulling shit like this are making bank while the people brought onboard by McDonalds make scratch by comparison, and would be crucified for fucking up even a fraction as much as this. Millions, with six zeroes, millions of applicants' data stolen from an account with the kind of password that a kid would use on their home computer. Fuck, this makes me so mad, the sheer incompetence.
-
I hate any company that uses or builds AI to screen out hires so, so much. Tagging metadata is OK, but filtering is just evil (am/have been a hiring manager).
The company also added that it’s instituting a bug bounty program to better catch security vulnerabilities in the future. “We do not take this matter lightly, even though it was resolved swiftly and effectively,”
I also hate it more that I can't hate them for doing the right thing.
Speak for yourself, I'm holding out hope that the universe is actually a little fair, and that the dolt responsible to creating that password, and subsequently fucking over millions of people has their testicles ruptured. Who are these idiots?
-
Are you sure you're a dancing bear? Are you related to the masturbating bear from Conan O Brian's late night show in the 90s?
Oh man I love Conan O’Brien, especially as a latch key kid whose ma worked shift work… arsenio hall and Conan O’Brien kick ass they made me feel so safe home alone falling asleep on the couch waiting for mom to come home
-
ETA? Estimated Time of Arrival?
In this context, it means "Edited To Add". I do wish they abbreviated it some other way, since "Estimated Time of Arrival" is a much more common meaning. I would accept "E2A" or something stupid, as long as it was more unique. Alternatively, they could just use "Edit:".
Edit: added link.
Oh no, we're out of letters!
-
"Spaceballs: the HR Robot"
Seriously though, who the fuck uses 123456 as the password for anything? The morons pulling shit like this are making bank while the people brought onboard by McDonalds make scratch by comparison, and would be crucified for fucking up even a fraction as much as this. Millions, with six zeroes, millions of applicants' data stolen from an account with the kind of password that a kid would use on their home computer. Fuck, this makes me so mad, the sheer incompetence.
I did something kinda similar when I applied. Why put effort into remembering a new password when I was only going to use it once to fill out a job ap? Wants anyone even going to do with my account?
-
I forgot what it was referring to and searched a bit
ah... classic.
Fuck i am old.
-
I did something kinda similar when I applied. Why put effort into remembering a new password when I was only going to use it once to fill out a job ap? Wants anyone even going to do with my account?
Goddamn it man, not the user account password, the fucking admin account password. Did you even read the article? Every single user account's information was compromised, not one random jerk with 123456 for their password.
-
Goddamn it man, not the user account password, the fucking admin account password. Did you even read the article? Every single user account's information was compromised, not one random jerk with 123456 for their password.
Not the person you were responding to, but... Did I read the article stuck behind a paywall? No, no I did not
Edit: ah I see the non paywall link now
-
Paywall removed: https://archive.ph/sn2Ud
When I used to work at McDonald's they required a fingerprint to clock in and out. They then apparently sold everyone's biometric data. I got some kind of settlement thing but it was like $20 or something. So that was nice... I guess
-
Paywall removed: https://archive.ph/sn2Ud
"Hackers"
-
When I used to work at McDonald's they required a fingerprint to clock in and out. They then apparently sold everyone's biometric data. I got some kind of settlement thing but it was like $20 or something. So that was nice... I guess
Sweet, now you can buy a big mac or a happy meal! Not both though...
-
Sweet, now you can buy a big mac or a happy meal! Not both though...
Maybe the happy meal then. :')
-
When I used to work at McDonald's they required a fingerprint to clock in and out. They then apparently sold everyone's biometric data. I got some kind of settlement thing but it was like $20 or something. So that was nice... I guess
If the class action I found online is the same one. My old shitty job tried to implement biometrics and dropped it around the time of that class action. What a coincidence. So thanks?
