Some Jr engineer got tired of handling stupid support requests and automated the job with an agent. That’s how.
Assigning Jr engineers for security support is ridiculous partly because young people don’t understand how critical security is sometimes. And partly because they don’t value privacy as much.
As a "young person" (under 30), my thoughts: There's a minority of us that do genuinely care, possibly more than most - so hiring someone from this minority would be helpful - but the vast majority of my peers don't care about privacy nor security. They often take this defeatist mindset of "my data is already out there, why should I care?", or prefer convenience over security. For example, "why should I switch to Signal if I have a public Instagram profile?" or "I can't remember all those passwords! I just use one for everything."
As for your comment about junior engineers, see
kennywinker's reply to this thread - I share the same thoughts.
Very generous of you to blame the screw up of one of the largest companies in the world on a jr engineer.
I’ve been a jr engineer at a large company. I had the power to implement absolutely jack shit on my own. I deeply doubt the security flow for account recovery in meta ai account security was a single jr engineer.
What i think is actually going on is basically a soft form of ai psychosis. Senior engineer gets ai to code ai account recovery feature, that same or a different engineer asks ai to review the feature, and then it gets pushed to prod. Move fast, break things. The ai coded it, the ai reviewed it - the people trusted the ai because it sounds confidently right.
Just like how the ai doesn’t know if you should walk or drive to the car wash, the ai doesn’t understand exploits like this one.
If a single junior engineer can do this, it’s an even bigger indictment of Facebook’s senior management than this exploit. A well-designed system doesn’t rely on individuals never making mistakes and if our hypothetical junior developer can make critical security policy changes without oversight, that should be a C-level job loss event.
If our goal isn’t to make excuses for the top of the org chart, a more likely explanation is that senior management is heavily incentivizing shipping AI features and this went out as a high-impact change reviewed in a rush, probably by AI.
Watch the ageism there, older devs can be lazy and ignorant of security too! (And are responsible for building a dev process that catches such things in review - which points to larger systemic issues over there)
I will agree that anyone that works at Meta is likely not somebody who values privacy very much, though.
Those people are not progressives. They are brainwashed wokes riled up using anger and cynicism; a mob in the making to counter a government; a transient missile fired at an opponent existing while it fires through and fleeting after it hits a target.
At the same time, it was a cartel of industries that felt threatened by the emerging green technology and became one of its greatest opponents. Government policy only meant the official loss of one side to the other.
We will never reverse CO2 emissions until humanity entertains itself less, spends less time in tourism, and does fewer unproductive recreational activities like drinking and drugs. Only then will waste go down significantly and utility go up. And only then will we reverse co2 emissions.
What do you mean? Pandoras box has already been opened. Even if OpenAI disappears, there will be another one to take its marketshare. The tech is too useful to die
You are arguing in theoreticals, so you should not be surprised if your answers are hypotheticals.
In reality most art is done because the artist has something to say, and the money they get from it is only motivating in as much as it enables the artist to do more art. So I would guess in a world without copyright protection we would just find other ways to pay artists and a very similar amount of art would be produced.
You can see an example of this e.g. in Iceland where the market is way to small for art aimed at the domestic market to make enough money solely by selling it (possible with music; rare with books; not possible with movies). Instead the state has an extensive “artist salary“ program, which pays artist regardless of how well the art they produce sells. Unsurprisingly Iceland produces a lot of art and has many working artists.
Cool. Let me know when the government is willing to pay me to write full time---I would
love to quit my job and do that instead. I think it's a great idea!
I wonder about this when I see someone post their own work without the Show HN prefix - is it always supposed to be a Show? (Enforcement/community objection to the lack thereof doesn't seem to be very strenuous, if so. Or, maybe it gets fixed after a little while and I haven't noticed.)
> Founder Nate Silver left in 2023, taking the rights to his forecasting model with him to his website Silver Bulletin.[7][8][9] The site's new owner, Disney, hired G. Elliott Morris to develop a new model.[7][8] On September 18, 2023, the original website domain at fivethirtyeight.com was closed, with web traffic becoming redirected to ABC News pages, and its logo was replaced, with the name 538 used instead of FiveThirtyEight.[2] On March 5, 2025, 538 was shut down by ABC News and its staff were laid off.[10] On May 15, 2026, ABC redirected thousands of archived 538 articles to the politics section of their news website, making them inaccessible.
Some people are good at developing the sciences. Others are good at developing commercial products.
And tesla is not a good place for science development. Tesla is structured from narcissistic mindset: results driven, cynical, and position-based. This doesn’t bode well for long term sciences.
Assigning Jr engineers for security support is ridiculous partly because young people don’t understand how critical security is sometimes. And partly because they don’t value privacy as much.
reply