Someone high up said something along the lines that they want to see some progress and someone down below looking for a promotion pushed this. This has always been happening but I think before it was more difficult to justify something like this as one would have needed to show the results of an algorithm, now it's easier to convince someone higher up that AI will solve it no worries
replyI work at Meta. The security team was recently gutted. 50% were either laid off or moved to data labeling.
replyIf you know them, ask them how this happened?
replyThe fact that this can happen at all without the security team's knowledge is telling.
replyProbably not as telling as you think it is.
replyThe security team at any organization is always considered an enemy to product and innovation. It wouldn't be surprising if management made it impossible for them to put in place the monitoring necessary to know this was happening. Especially at somewhere whose motto is "move fast and break things".
IG's security team is top-notch, but there's just not enough people.
replyImportant tech people on HN seem to be surrounded by technical excellence while the user data leaks and other sociological externalities happen to trail all the nearby paths.
replyLLMs don't understand security 101, or anything else for that matter. It shouldn't be surprising if they do something like this.
reply