Researchers logged into the admin backend of McDonald's AI hiring chatbot McHire, built by Paradox.ai, using the default credentials '123456'. An insecure direct object reference then let them enumerate applicant records by ID.
Personal data and chat transcripts of up to 64 million job applicants were exposed, though Paradox said only a handful of records were actually accessed before a same-day fix.
Default credentials must be forbidden and IDOR-style access controls enforced, especially on AI systems handling mass volumes of applicant PII.
Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.
Request a demo