Loraine Centeno reports:
McDonald’s just got a supersized reminder to beef up its digital security after its recruitment platform allegedly exposed the sensitive data of 64 million applicants.
Security researchers Ian Carrol and Sam Curry, known for their work in vulnerability investigations and ethical hacking, recently revealed a major flaw in McDonald’s new McHire recruitment platform that lead to the massive leak.
McHire, the chatbot hiring app used by 90 per cent of all McDonald’s franchises, uses a bot called Olivia that collects applicant’s personal details, resumes and shift preferences. The bot also schedules interviews and administers personality tests.
According to the report, researchers discovered that an admin account used to sign in to McHire.com/login used default credentials “123456” both as the user name and password.
Read more at YorkRegion.com.