• SolarBoy@slrpnk.net
    link
    fedilink
    English
    arrow-up
    12
    ·
    11 hours ago

    In the future, actual hacking will just involve social engineering corporate ai systems ( aka prompt hijacking )

  • Komodo Rodeo@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    10 hours ago

    “Spaceballs: the HR Robot”

    Seriously though, who the fuck uses 123456 as the password for anything? The morons pulling shit like this are making bank while the people brought onboard by McDonalds make scratch by comparison, and would be crucified for fucking up even a fraction as much as this. Millions, with six zeroes, millions of applicants’ data stolen from an account with the kind of password that a kid would use on their home computer. Fuck, this makes me so mad, the sheer incompetence.

    • drunkpostdisaster@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      3 hours ago

      I did something kinda similar when I applied. Why put effort into remembering a new password when I was only going to use it once to fill out a job ap? Wants anyone even going to do with my account?

  • bigredcar@lemmy.world
    link
    fedilink
    English
    arrow-up
    11
    ·
    15 hours ago

    Why do you even need a hiring bot for McDonalds? Maybe for managers but a McJob is a McJob.

    • dick_fineman@discuss.online
      link
      fedilink
      English
      arrow-up
      10
      ·
      13 hours ago

      I help folks with disabilities get jobs, so I’m familiar. I generally avoid fast food for my people, because it’s degrading and no one really wants a McJob. That being said, the bot actually makes it easier to apply, and they immediately schedule an interview…because they don’t care what your resume says and they just need warm bodies to throw at angry customers. Again, I avoid it for my folks wherever possible.

  • fmstrat@lemmy.nowsci.com
    link
    fedilink
    English
    arrow-up
    38
    ·
    22 hours ago

    I hate any company that uses or builds AI to screen out hires so, so much. Tagging metadata is OK, but filtering is just evil (am/have been a hiring manager).

    The company also added that it’s instituting a bug bounty program to better catch security vulnerabilities in the future. “We do not take this matter lightly, even though it was resolved swiftly and effectively,”

    I also hate it more that I can’t hate them for doing the right thing.

    • Komodo Rodeo@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      10 hours ago

      Speak for yourself, I’m holding out hope that the universe is actually a little fair, and that the dolt responsible to creating that password, and subsequently fucking over millions of people has their testicles ruptured. Who are these idiots?

    • Gormadt@lemmy.blahaj.zone
      link
      fedilink
      English
      arrow-up
      5
      ·
      14 hours ago

      They only did the right thing after getting caught openly doing the wrong thing, so I’d say I’d still be pissed.

      They should have never put the system in place with such a simple vulnerability (which to me) says they take such a laxodasical approach to security that I wouldn’t trust them even now.

  • naticus@lemmy.world
    link
    fedilink
    English
    arrow-up
    81
    arrow-down
    1
    ·
    1 day ago

    “Hacker” when the password could be guessed by an elementary student. Jfc.

    • Jolteon@lemmy.zip
      link
      fedilink
      English
      arrow-up
      48
      ·
      1 day ago

      I don’t think you were quite grasping the scope the McDonald’s operates at. That’s only a couple hundred per location, and fast food restaurants tend to have extremely high turnover, so that’s definitely not an unrealistic number.

    • Lost_My_Mind@lemmy.world
      link
      fedilink
      English
      arrow-up
      21
      arrow-down
      1
      ·
      1 day ago

      ETA? Estimated Time of Arrival?

      One of us doesn’t know what that stands for. I feel like the time my grandpa died, and mom sent me an email telling me “We’re going to the funeral this Friday to pay respects to grandpa. LOL!”

      I was quite confused. Turns out she grew up with “Lots Of Love”. For a second she seemed like she turned into an absolute psychopath, for like…no reason.

      • tate@lemmy.sdf.org
        link
        fedilink
        English
        arrow-up
        4
        ·
        17 hours ago

        ETA = Edit to add

        Just trying to explain why my comment changed, in case anyone saw it before that LOL.

      • spizzat2@lemmy.zip
        link
        fedilink
        English
        arrow-up
        37
        ·
        edit-2
        1 day ago

        ETA? Estimated Time of Arrival?

        In this context, it means “Edited To Add”. I do wish they abbreviated it some other way, since “Estimated Time of Arrival” is a much more common meaning. I would accept “E2A” or something stupid, as long as it was more unique. Alternatively, they could just use “Edit:”.

        Edit: added link.

    • Dave@lemmy.nz
      link
      fedilink
      English
      arrow-up
      9
      arrow-down
      1
      ·
      1 day ago

      They have over 40k locations. Many are 24/7. They also surely churn through employees, have many part time employees, and probably get many more applicants than they hire.

      The employees will be hired by the franchisees but they still use the McDonalds software.

      Millions is not a surprise to me at all. Perhaps that it’s tens of millions is a little surprising, but it still seems within the realm of possibility.

    • Dudewitbow@lemmy.zip
      link
      fedilink
      English
      arrow-up
      5
      arrow-down
      2
      ·
      1 day ago

      i mean there’s a shit ton of unskilled labor out there whose vertical reach isn’t that great.

  • Tikiporch@lemmy.world
    link
    fedilink
    English
    arrow-up
    12
    ·
    1 day ago

    A lot of companies use Paradox. They shit canned all their HR down to the bare bones and hired Olivia, which the Paradox recruiter I worked with said is so bad he has to take over answering in chat half the time.

      • Lost_My_Mind@lemmy.world
        link
        fedilink
        English
        arrow-up
        12
        arrow-down
        2
        ·
        1 day ago

        If the 90s taught me anything, it’s that hacking is done exclusively on monochrome green monitors, with dos. Except once they hack in, the monitor is full color, and somehow has access to every video camera on the planet. With the ability to enhsnce resolution seemingly to magical levels where you can see a clear reflection in someones pupil.

        ENHANCE!!!

        • brsrklf@jlai.lu
          link
          fedilink
          English
          arrow-up
          4
          ·
          1 day ago

          Nah, they evolved way past that in the following decades.

          Sometimes when they’re in a hurry they create GUI interfaces using Visual Basic to track IP adresses.

          And sometimes, if they’re very good, a hacker can manually carve a virus in a piece of bone using fractal patterns. They can use that to hack the computer scanning the bone so it adds a zero in thresholds for CPU heat monitoring and make it instantly catch fire.

          • Lost_My_Mind@lemmy.world
            link
            fedilink
            English
            arrow-up
            2
            arrow-down
            1
            ·
            1 day ago

            Are you sure you’re a dancing bear? Are you related to the masturbating bear from Conan O Brian’s late night show in the 90s?

            • DancingBear@midwest.social
              link
              fedilink
              English
              arrow-up
              1
              ·
              6 hours ago

              Oh man I love Conan O’Brien, especially as a latch key kid whose ma worked shift work… arsenio hall and Conan O’Brien kick ass they made me feel so safe home alone falling asleep on the couch waiting for mom to come home 👍

    • Armok_the_bunny@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      1
      ·
      1 day ago

      The risk is that some unknown hacker discovered this vulnerability and abused it before the researchers discovered and reported it. It sounds like the company has confirmed that didn’t happen, but they aren’t 100% trustworthy in that regard, simply because they might have missed something.

      • Auth@lemmy.world
        link
        fedilink
        English
        arrow-up
        9
        ·
        1 day ago

        yeah i know the risk, but the headline implies the data was exposed to a hacker who tried the password 123456 but thats not the case. A security researcher was investigating the application and accessed a test application with the password 123456 then found an API call which exposed the data and then he instantly reported it.

  • vane@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    7
    ·
    edit-2
    16 hours ago

    Paradox.ai’s chief legal officer, Stephanie King, told WIRED in an interview. “We own this.”

    I didn’t know Stephen King changed gender and is working for AI company.