Close Menu
Best in TechnologyBest in Technology
  • News
  • Phones
  • Laptops
  • Gadgets
  • Gaming
  • AI
  • Tips
  • More
    • Web Stories
    • Global
    • Press Release

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

What's On

The Best Prime Day Phone Deals

10 July 2025

Dell Alienware 16 Aurora Price (10 Jul 2025) Specification & Reviews । Dell Laptops

10 July 2025

The 20 Best Prime Day Apple Deals on iPads, AirPods, and MacBooks

10 July 2025
Facebook X (Twitter) Instagram
Just In
  • The Best Prime Day Phone Deals
  • Dell Alienware 16 Aurora Price (10 Jul 2025) Specification & Reviews । Dell Laptops
  • The 20 Best Prime Day Apple Deals on iPads, AirPods, and MacBooks
  • Nothing Phone 3 India Exclusive Drop Event Set to Take Place on July 12; First 100 Buyers Get Free Headphone 1
  • Dell Alienware 16 Aurora With Up to Nvidia GeForce RTX 5060 Laptop GPU Launched in India
  • Cloning Came to Polo. Then Things Got Truly Uncivilized
  • A New Kind of AI Model Lets Data Owners Take Control
  • Google’s Latest Pixel Drop Brings Free Google AI Pro Subscription for Pixel 9 Pro, AI Mode in Circle to Search
Facebook X (Twitter) Instagram Pinterest Vimeo
Best in TechnologyBest in Technology
  • News
  • Phones
  • Laptops
  • Gadgets
  • Gaming
  • AI
  • Tips
  • More
    • Web Stories
    • Global
    • Press Release
Subscribe
Best in TechnologyBest in Technology
Home » McDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Who Tried the Password ‘123456’
News

McDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Who Tried the Password ‘123456’

News RoomBy News Room10 July 20253 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Share
Facebook Twitter LinkedIn Pinterest Email

If you want a job at McDonald’s today, there’s a good chance you’ll have to talk to Olivia. Olivia is not, in fact, a human being, but instead an AI chatbot that screens applicants, asks for their contact information and résumé, directs them to a personality test, and occasionally makes them “go insane” by repeatedly misunderstanding their most basic questions.

Until last week, the platform that runs the Olivia chatbot, built by artificial intelligence software firm Paradox.ai, also suffered from absurdly basic security flaws. As a result, virtually any hacker could have accessed the records of every chat Olivia had ever had with McDonald’s applicants—including all the personal information they shared in those conversations—with tricks as straightforward as guessing the username and password “123456.”

On Wednesday, security researchers Ian Carroll and Sam Curry revealed that they found simple methods to hack into the backend of the AI chatbot platform on McHire.com, McDonald’s website that many of its franchisees use to handle job applications. Carroll and Curry, hackers with a long track record of independent security testing, discovered that simple web-based vulnerabilities—including guessing one laughably weak password—allowed them to access a Paradox.ai account and query the company’s databases that held every McHire user’s chats with Olivia. The data appears to include as many as 64 million records, including applicants’ names, email addresses, and phone numbers.

Carroll says he only discovered that appalling lack of security around applicants’ information because he was intrigued by McDonald’s decision to subject potential new hires to an AI chatbot screener and personality test. “I just thought it was pretty uniquely dystopian compared to a normal hiring process, right? And that’s what made me want to look into it more,” says Carroll. “So I started applying for a job, and then after 30 minutes, we had full access to virtually every application that’s ever been made to McDonald’s going back years.”

When WIRED reached out to McDonald’s and Paradox.ai for comment, a spokesperson for Paradox.ai shared a blog post the company planned to publish that confirmed Carroll and Curry’s findings. The company noted that only a fraction of the records Carroll and Curry accessed contained personal information, and said it had verified that the account with the “123456” password that exposed the information “was not accessed by any third party” other than the researchers. The company also added that it’s instituting a bug bounty program to better catch security vulnerabilities in the future. “We do not take this matter lightly, even though it was resolved swiftly and effectively,” Paradox.ai’s chief legal officer, Stephanie King, told WIRED in an interview. “We own this.”

In its own statement to WIRED, McDonald’s agreed that Paradox.ai was to blame. “We’re disappointed by this unacceptable vulnerability from a third-party provider, Paradox.ai. As soon as we learned of the issue, we mandated Paradox.ai to remediate the issue immediately, and it was resolved on the same day it was reported to us,” the statement reads. “We take our commitment to cyber security seriously and will continue to hold our third-party providers accountable to meeting our standards of data protection.”

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleSamsung Galaxy Watch 8 (44mm) Online at Lowest Price in India
Next Article iPhone 17 Air Colour Options Hinted in New Leak; Could Launch in Four Shades

Related Articles

News

The Best Prime Day Phone Deals

10 July 2025
News

The 20 Best Prime Day Apple Deals on iPads, AirPods, and MacBooks

10 July 2025
News

Cloning Came to Polo. Then Things Got Truly Uncivilized

10 July 2025
News

A New Kind of AI Model Lets Data Owners Take Control

10 July 2025
News

Our Favorite Dyson Vacuum (and Its Mop Version!) Is $200 Off Right Now

10 July 2025
News

Elon Musk Unveils Grok 4 Amid Controversy Over Chatbot’s Antisemitic Posts

10 July 2025
Demo
Top Articles

ChatGPT o1 vs. o1-mini vs. 4o: Which should you use?

15 December 2024101 Views

Costco partners with Electric Era to bring back EV charging in the U.S.

28 October 202495 Views

Oppo Reno 14, Reno 14 Pro India Launch Timeline and Colourways Leaked

27 May 202582 Views

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

Latest News
News

Cloning Came to Polo. Then Things Got Truly Uncivilized

News Room10 July 2025
News

A New Kind of AI Model Lets Data Owners Take Control

News Room10 July 2025
Phones

Google’s Latest Pixel Drop Brings Free Google AI Pro Subscription for Pixel 9 Pro, AI Mode in Circle to Search

News Room10 July 2025
Most Popular

The Spectacular Burnout of a Solar Panel Salesman

13 January 2025124 Views

ChatGPT o1 vs. o1-mini vs. 4o: Which should you use?

15 December 2024101 Views

Costco partners with Electric Era to bring back EV charging in the U.S.

28 October 202495 Views
Our Picks

Nothing Phone 3 India Exclusive Drop Event Set to Take Place on July 12; First 100 Buyers Get Free Headphone 1

10 July 2025

Dell Alienware 16 Aurora With Up to Nvidia GeForce RTX 5060 Laptop GPU Launched in India

10 July 2025

Cloning Came to Polo. Then Things Got Truly Uncivilized

10 July 2025

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

Facebook X (Twitter) Instagram Pinterest
  • Privacy Policy
  • Terms of use
  • Advertise
  • Contact Us
© 2025 Best in Technology. All Rights Reserved.

Type above and press Enter to search. Press Esc to cancel.