“Hackers”
“Spaceballs: the HR Robot”
Seriously though, who the fuck uses 123456 as the password for anything? The morons pulling shit like this are making bank while the people brought onboard by McDonalds make scratch by comparison, and would be crucified for fucking up even a fraction as much as this. Millions, with six zeroes, millions of applicants’ data stolen from an account with the kind of password that a kid would use on their home computer. Fuck, this makes me so mad, the sheer incompetence.
You just know new hires there must have to watch some anodyne video about data security that mentions secure passwords too.
I did something kinda similar when I applied. Why put effort into remembering a new password when I was only going to use it once to fill out a job ap? Wants anyone even going to do with my account?
Goddamn it man, not the user account password, the fucking admin account password. Did you even read the article? Every single user account’s information was compromised, not one random jerk with 123456 for their password.
I guess I need to change the password on my luggage
How do I know you’re not making faces at me under that thing?
12345? Amazing, I have the same combination on my luggage!
No.
This is completely different and unhackable. 12345…6!
Such a great movie!
Why do you even need a hiring bot for McDonalds? Maybe for managers but a McJob is a McJob.
“Hacker” when the password could be guessed by an elementary student. Jfc.
Pool on the roof must have a leak
I’m so lucky that my password is hunter2
All I see is *******?
That’s cause I copied your password but it shows up as *******
See: hunter2
A lot of companies use Paradox. They shit canned all their HR down to the bare bones and hired Olivia, which the Paradox recruiter I worked with said is so bad he has to take over answering in chat half the time.
Paradox.ai’s chief legal officer, Stephanie King, told WIRED in an interview. “We own this.”
I didn’t know Stephen King changed gender and is working for AI company.
Wasnt it a security researcher and not a hacker?
The difference in terminology is simple…
A legit paycheck.
The risk is that some unknown hacker discovered this vulnerability and abused it before the researchers discovered and reported it. It sounds like the company has confirmed that didn’t happen, but they aren’t 100% trustworthy in that regard, simply because they might have missed something.
yeah i know the risk, but the headline implies the data was exposed to a hacker who tried the password 123456 but thats not the case. A security researcher was investigating the application and accessed a test application with the password 123456 then found an API call which exposed the data and then he instantly reported it.
