See every side of every news story
Get Started
SubscribeLogin
Israel-Hamas Conflict
Prime Day
Social Media
James Gunn
Amazon
Natural Disasters
Floods
Donald Trump
Justice
Artificial Intelligence
Education
Crime
Instagram
Published loading...Updated

McDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Who Tried the Password ‘123456’

UNITED STATES, JUL 11 – Security researchers uncovered a default password vulnerability exposing the personal data of 64 million applicants on McDonald's AI hiring platform, prompting immediate remediation by Paradox.ai.

  • On June 30, cybersecurity experts Ian Carroll and Sam Curry identified a security flaw in McDonald's AI-driven hiring system, McHire, which resulted in the exposure of personal information belonging to 64 million job seekers across the United States.
  • The flaw stemmed from weak default admin credentials of '123456' used in McHire’s chatbot backend and an IDOR bug that allowed unauthorized data access.
  • Researchers were able to access extensive conversation records, authentication tokens, and sensitive applicant information collected by Olivia, the AI chatbot responsible for screening 90 percent of job candidates at McDonald's franchises.
  • Paradox.ai and McDonald's confirmed the issue, promptly disabled default credentials, deployed a fix the same day, and initiated a system review with plans for a bug bounty program.
  • The breach highlights risks in AI hiring systems using weak security, prompting McDonald's and Paradox.ai to strengthen protections and enforce third-party accountability.
Insights by Ground AI
Does this summary seem wrong?

55 Articles

All
Left
7
Center
7
Right
2
BleepingComputerBleepingComputer
Center

'123456' password exposed info for 64 million McDonald’s job applicants

Cybersecurity researchers discovered a vulnerability in McHire, McDonald's chatbot job application platform, that exposed the personal information of more than 64 million job applicants across the United States.

Read Full Article
NiagaraFallsReview.caNiagaraFallsReview.ca
Lean Left

McDonald's McHire leak involving '123456' admin password exposes 64 million applicant records

The leak reportedly involved the company's McHire platform used in various countries including the U.S. and Canada to collect resumes, sensitive data and details from applicants’ personality tests.

·Niagara Falls, Canada
Read Full Article
TechCrunchTechCrunch
Center

AI chatbot's simple ‘123456’ password risked exposing personal data of millions of McDonald’s job applicants

Security researchers found two flaws in an AI-powered chatbot used by McDonald’s to interact with job applicants.

·United States
Read Full Article
GizmodoGizmodo
Lean Left

Bug Hunters Gain Access to 64 Million McDonald's Job Applicants' Info by Using the Password '123456'

Millions and Millions Exposed.

·United States
Read Full Article
20minutos20minutos
Center

Access Data From 64 Million Applicants to Work at Mcdonald's: an Ai Chatbot Protected Them with Password 123456

If you have conducted a job interview at McDonald's in 2025 through her chatbot Olivia, your personal data has been exposed to any curious.

·Madrid, Spain
Read Full Article
Tech RadarTech Radar
Center

McDonald’s AI recruiting platform had a really embarrassing security flaw - and it left millions of users open to attack

Researchers logged into the backend of McHire with a "123456" password.

·United Kingdom
Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 44% of the sources lean Left, 44% of the sources are Center
44% Center
Factuality

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

IT PRO broke the news in on Wednesday, July 9, 2025.
Sources are mostly out of (0)

Similar News Topics

Offbeat icon

Offbeat

Chatbot icon

Chatbot

McDonald's icon

McDonald's

Technology icon

Technology

Cyber Security icon

Cyber Security

Artificial Intelligence icon

Artificial Intelligence

United States icon

United States

News
For You
SearchBlindspotLocal