How can important data be accessed with a password as simple as ‘123456’? Well, the security flaw in Mcdonald’s hiring platform called McHire, which was driven by artificial intelligence (AI), has clearly shown that even AI cannot be foolproof. In this case, it was so flawed that it was hacked ever so easily.
The hiring bot, ‘Olivia’ associated with McHire—created by Paradox.ai, a software firm—was hacked using an easy username and password such as ‘123456’. The hacking exposed the data pertaining to about 64 million job applicants. The exposed data included chats/exchanges/interactions between candidates and the hiring bot, along with their personal information.
The breach has triggered concerns about failure of cybersecurity and data-protection levels in automated hiring systems.
‘Olivia’ is the one that has been streamlining the hiring process for the fast-food chain’s franchises across locations. The hiring bot not only screens the applicants, but also collects and records their information and resumes, and even walks them through personality assessments. Using natural language processing algorithms, ‘Oliva’ is able to interact with candidates.
McHire is an example of an AI-driven human resource management system that has allowed algorithms to take over the work that used to be done manually by human beings, across various stages of the hiring process. However, it is reported that many job seekers have found ‘Olivia’ incompetent and unable to even answer basic queries.
This episode of breach that has compromised candidates’ data has proven beyond doubt that even technology cannot be relied on blindly, as it can also be vulnerable.
