Ask Lemmy

I worked as software engineer and my boss tolerated me going to office at 2pm and leave at 9pm. It's against company policy, certainly, but no one talked about it. It still is my most productive and happy time.

The building, used by several hundred employees, had a security systems with 4-digit codes. I've been part of group of people who liked to work late times, and the building would lock at midnight -- the box by the door would start beeping and you would need to unlock it within a minute or so, or "proper alarm" would ensue.

However, to unlock the alarm you did not need your card -- all you needed to do was to enter any valid code. Guess what was the chance that, say, 1234 was someone's valid code? Yes.

We've been all using some poor guy's code 1234, and after several years, when he left the company we just guessed some other obvious code (4321) and kept using that.

By the way, after entering the code to the box by the door, it would shortly display name of the person whom the code "belonged" to. One of our colleagues took it as a personal secret project to slowly go through all 10000 possible codes and collect the names of the people, just for the kick of it.

(By the way, I don't work for that company anymore, and more importantly, the company does not use that building anymore, so don't get any ideas! 🙃 )

I work in IT. Most systems have laughable security. Passwords are often saved in plain text in scripts or config files. I went to a site to help out a very large provincial governmental organization move some data out of one system and into another. They sat me down with a loaner laptop and the guy logged me into his user account on the server. When I asked for escalated privileges, he told me he'd go get someone who knew the service account passwords.

After a few minutes, I started poking around on my own... And had administrative access within an hour. I could read the database (raw data), access documents, start and stop the software, plus, figured out how to get into the upstream system that fed data to this server... I was working on figuring out the software's admin password when the guy came back. I'm sure that given some more time, I could have rooted the box because the OS hadn't been updated in years.

Over a decade ago I worked as a freelancer for an Investment Bank (the largest one that went bankrupt in the 2008 Crash, which was a few years later) were the head of the Proprietary Trading Desk (the team of Traders who invest for the profit of the bank) asked me if I could change the software so that they could see the investments of the Client Trading Desk (who invest for clients with client money) was making, with the assent of the latter team.

Now if the guys investing money for the bank know what they guys investing customer money are doing they can do things like Front-Run the customer trades (or serve them at exactly the right price to barelly beat the competiotion) thus making more profits for the bank and hence get bigger bonuses. This is why Financial regulations say that there is supposed to be so-called Chinese Walls between the proprietary trading and the customer trading activities: they're supposed to be segregated and not visible to each other.

Note that the heads of both teams were mates and already regularly had chats, so they might already have been exchanging this info informally.

I was quite fresh in there (less than 1 year) and the software system I worked in at the time was used by both teams, but when I started looking into it I saw that the separation was very explicitly coded in software and that got me thinking about what I had learned from the mandatory compliance training I had done when I first joined (so, yeah, that stuff is not totally useless!!!)

So I asked for written confirmation from the heads of both teams, and just got some vague response e-mails, no clear "do such and such".

So I played the fool and took it to a seperate team called Compliance (responsible for compliance with financial regulations) saying I just wanted to make sure it was all prim and proper, "just in case".

Of course, it kinda blew up (locally) and I ended up called to a meeting with the heads of the Prop Desk and whatnot - all stern looks and barelly contained angry tones - were I kept playing the fool.

Ultimatelly it ended up not being a problem for me at all, to the point that after that bank went bust and its component parts were sold to another bank, the technical team manager asked me to come back to work with the same IT group (remember, I was a freelancer) with even greater responsabilities, so this didn't exactly damage my career.

That said, over the years there were various cases of IT guys in large investment banks who went along with "innocent" requests from the Traders and ended up as the fall-guys for subsequent breaking of Finance Regulations, serving jail time, so had I gone along with that request I would've actually risked ending up in jail.

(Financial Regulators were and are a complete total joke when it comes to large banks, which actually makes it more likely that some poor techie guy will be made the fall guy to protected the bank and its heads).

A large pizza chain, it costs about $1 to make a large cheese pizza. Cheese is re-used as much as possible.

At Disneyland, Mickey Mouse is always played by a woman, due to the small costume. So if you put your arm around him for a photo, try not to accidentally touch Mickey’s boobs.

Snake Farm, when asked how to sell a policy that's clearly more expensive than the competition's answer was "They should feel privilege to be a Snake Farm customer."

The hubris was baffling.

Worked support for an electricity supplier. I was able to see a frightening amount of info about the customers. Even past ones who had moved elsewhere.

We also kept notes about each call, email, web or app chat. So if you were an asshole in the past, everyone will know going forward.

Also fuck landlords and landladies etc. More often than not, they were shitty to deal with.

Also we would often use Google Maps and Streetview to see what your house looked like. We also had pictures of the inside because the installation techs took pictures to confirm that works were completed as specified.

Alll of this was available to us for any reason, at any time with no oversight. And none of it was encrypted. There was also government websites in use up to 2020 that required internet explorer to use and had passwords as trivial as 'Password1'.

I left that job because the pay was lousy and the stress was pretty full on. I respected a lot of people that worked there. Both higher ups and people who came after me. But fuck was there a lot of potential for bad actors or like stalkers etc to mess with your info.

I would reccomend to everyone. Please use password managers. Especially decent open source ones like Bitwarden. Take note of every piece of info that you give a company. From your phone number, address, email etc to even when you contacted them. Also try to not have your home look like an abandoned hovel on Streetview lol. Easier said than done I know. But it may affect your dealings with support people that you need help from. And lastly, please dont use Password1 as a login. Ever. Like please.

I used to work at Starbucks (almost a decade ago now), but at the time, the motto was "just say yes" to any customer requests. We also had free drink cards that you could give out to deesclate any issue. So I would say any time you're even the slightest bit unhappy, bring it up, and you should at least have your problem solved, if not compensated for a free drink next time.

We also had customer satisfaction surveys that would print on reciepts, where filling one out would get the customer a free drink. We always kept them for customers that were happier to try and rig the odds in our favour of a higher rating, but also if a customer asked for one, I would give it if I had it. You could always ask the cashier if they have any of those as well.

Again, not sure how much either of those things have changed in the past 10 years, and I'm not sure how regional it was (this was in Canada at a corporately run store), but maybe worth a try.

Also I love these types of threads -- great topic to post.

I worked at a fruit processing plant. We found maggots in the blueberries. Line got shut down for obvious reasons.

Owner of the company came in and said 'pack them anyway'. We knowingly sent out blueberries with maggots in them.

Needless to say that company sucks and people hate working there.

The people who negotiate your medical claims make more money on the settlement commissions than the doctors even make from their procedures.

And there’s like 25-40 people total who handle the claims for every single health insurance company.

We used to sell Windows built-in Recovery tool.

I worked for a pretty popular magazine back in the late 90's. One day near the beginning/middle of 2000, we were all called down to the bullpen for a last minute meeting by management and marketing. (That's never a good sign.)

We were told that we have a great product with amazing writing, but marketing doesn't know how to sell it so they're closing us down. Instead, we went online only. I was the web developer so I survived the firings.

So then we figured that we were set because our website produced more content and had more traffic than any of the company's other websites. However, in March of 2001, we had another emergency meeting. Again, we were told our content was great, but the company was going in another direction. Instead of producing our own content, the company was going to just repost other sites' content. I and everyone else in my team were let go.

Needless to say, the whole "we'll just repost what other people posted" plan didn't go so well. Last time I checked, the company wasn't doing very well at all.

When I worked at Bob Evans I watched a manager peel the expiration dates off of expired food and replace them with dates in the future to avoid waste.

My previous employer - a multi-billion dollar internet search company would secretly listen to people's conversation via their mobile devices then place ads on the same devices (e.g in the browser search results or at the start of videos) based on keywords from the conversations, this had to be kept hidden of course and this large well-known company shall remain nameless.

Yes, in the mid 1990s, large banks in the USA were being electronically compromised so often that they wouldn’t investigate or pursue a loss if it was under $50k.

The last company I worked for has both NDA's and arbitration agreements, which would keep me from spilling company secrets and would screw me over if I did. But here is a secret - they use online PDF forms and don't check what text is entered into the signature.

The dealership I worked for gave out loans they knew people couldn’t afford, ignored safety items, slapped inspection stickers that didn’t match vehicles to get them on the lot. Ran a lift that was jerry rigged because the wiring busted along with the hydraulic tank.

Employee bought a vehicle and his manager watched where he went on his lunch (via GPS installed by said company into sold vehicles). Funnily enough it was to an interview.

Oh another one. School bus company 1 is one of the largest in the US. In between runs a buddies transmission starts leaking on his bus. He calls the terminal on my phone to let them know.

“Keep driving keep it going, we are not sending out another bus to you.”

Transmission in a 45ft flat nose busts fully in the middle of one of the busiest intersections in the town. He calls over radio letting them know it busted as he told them.

“What do you mean this is first time I’m hearing about this”

Flat nose I drove kept writing up for not having heat and turning it into the people I was told. This went for an entire winter and I didn’t have heat until after the thaw and spring started. Mechanic never knew that bus had been being written up. They were hiding slips. Same bus, folding door let go and was flapping in the wind with a bus full of students. Over the radio they said to keep driving and refused to send a replacement.