Aggregator

In a bombshell statement, the best-selling writer claimed she was working during a 'pressured time' when errors were being made across the business.

Dolly Parton has given a heartbreaking update on her career after the death of her husband of 59 years, Carl Dean.

Brooklyn Beckham's fans playfully took aim at his recent video after they noticed a private chef in the amateur cook's new cooking tutorial.

Little would shock the fans of Amanda Bynes, the child star of the Nickelodeon TV network in the late Nineties and early Noughties.

Dozens of CDs, binders, and mystery hard drives found at Jeffrey Epstein's New York mansion have cast doubt on the Trump administration's controversial memo about their review.

Built on Chromium, ironically

Perplexity has released its own web browser called Comet, and it's clearly aimed at Google.…

Christine McGuinness highlighted the challenges parents of neurodiverse children often face as she made a glam appearance on the BBC radio show Woman's Hour on Wednesday. 

An anonymous reader quotes a report from Wired: If you want a job at McDonald's today, there's a good chance you'll have to talk to Olivia. Olivia is not, in fact, a human being, but instead an AI chatbot that screens applicants, asks for their contact information and resume, directs them to a personality test, and occasionally makes them "go insane" by repeatedly misunderstanding their most basic questions. Until last week, the platform that runs the Olivia chatbot, built by artificial intelligence software firm Paradox.ai, also suffered from absurdly basic security flaws. As a result, virtually any hacker could have accessed the records of every chat Olivia had ever had with McDonald's applicants -- including all the personal information they shared in those conversations -- with tricks as straightforward as guessing the username and password "123456." On Wednesday, security researchers Ian Carroll and Sam Curryrevealedthat they found simple methods to hack into the backend of the AI chatbot platform on McHire.com, McDonald's website that many of its franchisees use to handle job applications. Carroll and Curry, hackers with along track record of independent security testing, discovered that simple web-based vulnerabilities -- including guessing one laughably weak password -- allowed them to access a Paradox.ai account and query the company's databases that held every McHire user's chats with Olivia. The data appears to include as many as 64 million records, including applicants' names, email addresses, and phone numbers. Carroll says he only discovered that appalling lack of security around applicants' information because he was intrigued by McDonald's decision to subject potential new hires to an AI chatbot screener and personality test. "I just thought it was pretty uniquely dystopian compared to a normal hiring process, right? And that's what made me want to look into it more," says Carroll. "So I started applying for a job, and then after 30 minutes, we had full access to virtually every application that's ever been made to McDonald's going back years." Paradox.ai confirmed the security findings, acknowledging that only a small portion of the accessed records contained personal data. The company stated that the weak-password account ("123456") was only accessed by the researchers and no one else. To prevent future issues, Paradox is launching a bug bounty program. "We do not take this matter lightly, even though it was resolved swiftly and effectively," Paradox.ai's chief legal officer, Stephanie King, told WIRED in an interview. "We own this." In a statement to WIRED, McDonald's agreed that Paradox.ai was to blame. "We're disappointed by this unacceptable vulnerability from a third-party provider, Paradox.ai. As soon as we learned of the issue, we mandated Paradox.ai to remediate the issue immediately, and it was resolved on the same day it was reported to us," the statement reads. "We take our commitment to cyber security seriously and will continue to hold our third-party providers accountable to meeting our standards of data protection."

Read more of this story at Slashdot.

The European Union cannot practically declare its independence from Nvidia GPUs any more than any other nation can at this point. …

With Money And Rhea1 Tapeout, SiPearl Gets Real About HPC CPUs was written by Timothy Prickett Morgan at The Next Platform.

In honor of one of the biggest weeks in the business world, FEMAIL has rounded up some of the best and worst dressed moguls from the week.

Raul Elias Valle, now 20, was found not guilty of murder, manslaughter or assault over the 2022 killing of Fairfield Prep lacrosse player James 'Jimmy' McGrath.

Kerrville, Texas, Mayor Joe Herring snapped at reporters on Wednesday, as officials face growing questions over their preparedness for a disaster.

The instalment saw credit manager Candy and construction worker Mark ask for Ben's help to find them the dream home in Almería, Spain , for just £75k.

Hey, teacher, leave those kids to AI

After committing more than $13 billion in strategic investments to OpenAI, Microsoft is splashing out billions more to get people using the technology.…

Comedian and TikTok star Kareem Rahma is dishing more details on why he scrapped a sought-after interview with then-presidential candidate Kamala Harris days before the election.

Soon, the welfare system will pay £2,500 more to someone on benefits than the post-tax earnings of someone working full time on the national living wage.

Mail Sport understands that the appointment of the London 2012 supremo is a huge boost, with the club at loggerheads with a nearby business over a piece of land vital to the vast project.

The mystery of an 'underground city' beneath Egypt's pyramids has intensified after scientists revealed a new discovery below the Great Sphinx.

The Boys & Girls Club in Sallisaw, Oklahoma - near the Arkansas border - was forced to evacuate as heavy rain fell and flooded the River Valley.

AMD is warning users of a newly discovered form of side-channel attack affecting a broad range of its chips that could lead to information disclosure. Register: Akin to Meltdown and Spectre, the Transient Scheduler Attack (TSA) comprises four vulnerabilities that AMD said it discovered while looking into a Microsoft report about microarchitectural leaks. The four bugs do not appear too venomous at face value -- two have medium-severity ratings while the other two are rated "low." However, the low-level nature of the exploit's impact has nonetheless led Trend Micro and CrowdStrike to assess the threat as "critical." The reasons for the low severity scores are the high degree of complexity involved in a successful attack -- AMD said it could only be carried out by an attacker able to run arbitrary code on a target machine. It affects AMD processors (desktop, mobile and datacenter models), including 3rd gen and 4th gen EPYC chips -- the full list is here.

Read more of this story at Slashdot.