Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai

Security researchers have warned that the personal information of millions of people who applied for jobs at McDonald’s was exposed after they guessed the password for the fast-food chain’s account at AI chatbot provider Paradox.ai.
The researchers discovered that the weak password used by Paradox.ai left 64 million records exposed, including applicants’ names, email addresses and phone numbers.
Paradox.ai said the security incident was an isolated incident that didn’t affect its other customers, but recent security breaches involving its employees in Vietnam suggest this wasn’t the case.
A Paradox.ai developer based in Vietnam had their device compromised by the “Nexus Stealer” malware, which stole usernames and passwords for a variety of services.
Stolen credentials showed the developer used the same seven-digit password to log into accounts for a number of Paradox.ai’s Fortune 500 firm clients, including Lockheed Martin and Pepsi.

Fast Feed