Ask Lemmy

Our business-critical internal software suite was written in Pascal as a temporary solution and has been unmaintained for almost 20 years. It transmits cleartext usernames and passwords as the URI components of GET requests. They also use a single decade-old Excel file to store vital statistics. A key part of the workflow involves an Excel file with a macro that processes an HTML document from the clipboard.

I offered them a better solution, which was rejected because the downtime and the minimal training would be more costly than working around the current issues.

i worked for a hybrid hosting and cloud provider that was partnered with Electronic Arts for the SimCity reboot.

well half way through they decided our cloud wasn’t worth it, and moved providers. but no one bothered to tell all the outsourced foreign developers that they were on a new provider architecture.

all the shit storm fail launch of SimCity was because of extremely shitty code that was meant to work on one cloud and didn’t really work on another. but they assumed hurr hurr all server same.

so you guys got that shit launch and i knew exactly why and couldn’t say a damn thing for YEARS

I used to work for a popular wrestling company, billionaire owner, very profitable, would write off any OSHA penalties as the 'cost of doing business' just as they did in 1998, when The Undertaker threw Mankind off Hell In A Cell, and plummeted 16 ft through an announcer's table

The company would bid on government contracts, knowing full well they promised features that didn’t exists and never would, but calculating that the fine for not meeting the specs was lower than the benefit of the contract and getting the buyers locked into our system. I raised this to my boss, nothing changed and I quit shortly after.

1-800-got-junk? doesn't care at all about its environmental impact. No sorting what so ever happens to what goes on their trucks it all goes to landfills. All the ads will say they recycle and that they repurpose old furniture but I was threatened with being fired when I recommended donating antiques instead of dumping a load of furniture.

More jobs and more profits comes before anything else in that company, including employee health and safety. Several times I was told to enter spaces we werent trained for (attics and crawl spaces) and carry waste I legally couldn't transport (human/organic wastes and the laws states the driver is fined, not the company). One guy injured his shoulder during an attic job and was told to finish the shift or lose his job. Absoulte scum of a company with very sleazy management and possibly the labour board in their pocket as they kept "losing the files" when I tried to file a report with buddy's shoulder (he was hesistant to report for fear of losing his job).

The programming team that is working hard on your project is just one dude and he smells funny. The programming team you’ve met in your introductory meeting are just the two unpaid interns that will be fired or will quit within the next two months and don’t know what’s happening. We don’t do agile despite advertising it. Also your project being a priority means it’ll be slapped together from start to finish 24 hours prior to the deadline. Oh and there will be extra charges to fix anything that doesn’t work as it should.

I worked as a pastor and professor for a global, evangelical television ministry/college. They knowingly conceal scholarship on the Bible and punish their pastors for asking any questions that undermine their most closely held traditions (including anti-evolution, mental illness is supernatural, etc.). They tell their US viewers that they can't call themselves Christians if they don't vote Republican, while still enjoying tax-exempt status. They use pseudohistorians to inspire Christian Nationalism over their network, and are one of the largest propaganda networks for the Religious Right. A U.S. Capitol police commander told me his men were fighting people who were wearing the network's brand.

Worked in tech support for a major internet provider. We would constantly have major ouages in various locations due to overtaxed systems going down. Corporate refused to allow us to admit that there were problems on our end and forced the techs to troubleshoot the customer calls, even though we all knew that we could do nothing for the customer. Saw multiple techs releived of their job for telling the truth to the customers. So many hours wasted on both the customer and techs part.

Over a decade ago I worked as a freelancer for an Investment Bank (the largest one that went bankrupt in the 2008 Crash, which was a few years later) were the head of the Proprietary Trading Desk (the team of Traders who invest for the profit of the bank) asked me if I could change the software so that they could see the investments of the Client Trading Desk (who invest for clients with client money) was making, with the assent of the latter team.

Now if the guys investing money for the bank know what they guys investing customer money are doing they can do things like Front-Run the customer trades (or serve them at exactly the right price to barelly beat the competiotion) thus making more profits for the bank and hence get bigger bonuses. This is why Financial regulations say that there is supposed to be so-called Chinese Walls between the proprietary trading and the customer trading activities: they're supposed to be segregated and not visible to each other.

Note that the heads of both teams were mates and already regularly had chats, so they might already have been exchanging this info informally.

I was quite fresh in there (less than 1 year) and the software system I worked in at the time was used by both teams, but when I started looking into it I saw that the separation was very explicitly coded in software and that got me thinking about what I had learned from the mandatory compliance training I had done when I first joined (so, yeah, that stuff is not totally useless!!!)

So I asked for written confirmation from the heads of both teams, and just got some vague response e-mails, no clear "do such and such".

So I played the fool and took it to a seperate team called Compliance (responsible for compliance with financial regulations) saying I just wanted to make sure it was all prim and proper, "just in case".

Of course, it kinda blew up (locally) and I ended up called to a meeting with the heads of the Prop Desk and whatnot - all stern looks and barelly contained angry tones - were I kept playing the fool.

Ultimatelly it ended up not being a problem for me at all, to the point that after that bank went bust and its component parts were sold to another bank, the technical team manager asked me to come back to work with the same IT group (remember, I was a freelancer) with even greater responsabilities, so this didn't exactly damage my career.

That said, over the years there were various cases of IT guys in large investment banks who went along with "innocent" requests from the Traders and ended up as the fall-guys for subsequent breaking of Finance Regulations, serving jail time, so had I gone along with that request I would've actually risked ending up in jail.

(Financial Regulators were and are a complete total joke when it comes to large banks, which actually makes it more likely that some poor techie guy will be made the fall guy to protected the bank and its heads).

There is a million times more counterfeit/fake items at amazon than you think, and they dont care one bit to fix the problem

Why is everyone here afraid to name the companies?

Unless you're sharing something that only you would know and the company is aware that you're the only one who knows it, there's no way they can identify you.

Something tells me the people posting here who had "NDAs" didn't actually have any sort of a high level clearance to important information.

It's pretty depressing, but the fact that soil and groundwater are almost certainly contaminated anywhere that humans have touched. I've seen all kinds of places from gas stations, to dry cleaners, to mines, to fire stations, to military bases, to schools, to hydroelectric plants, the list could go on, and every last one of them had poison in the ground.

An AI company... They used to manually change system event logs to show it wasn't their software that caused the downtime for our clients.

Bought over a million dollars worth hardware (25% of which didn't even got racked), over 200 46inch LED screens that no one used, and very expensive offices at posh locations in the bid to increase its IPO valuation.

I used to work for a cable company whose name rhymes with "bombast". They offer a wifi service whose name is a derivation of the word "infinity". Most of the hotspots for this wifi service are provided by the Bombast wireless routers that cable customers have in their homes. So if you're a Bombast customer, you're helping to pay the electrical bill and giving up bandwidth in order to provide Infinity wifi.

Another fun Bombast story: the founder, a man who always wore a bowtie, died a few years ago. At a memorial service in his honor, a number of vice presidents and other executives (including my boss at the time) wore bowties. Everyone who wore a bowtie to the service was fired within a week.

The building, used by several hundred employees, had a security systems with 4-digit codes. I've been part of group of people who liked to work late times, and the building would lock at midnight -- the box by the door would start beeping and you would need to unlock it within a minute or so, or "proper alarm" would ensue.

However, to unlock the alarm you did not need your card -- all you needed to do was to enter any valid code. Guess what was the chance that, say, 1234 was someone's valid code? Yes.

We've been all using some poor guy's code 1234, and after several years, when he left the company we just guessed some other obvious code (4321) and kept using that.

By the way, after entering the code to the box by the door, it would shortly display name of the person whom the code "belonged" to. One of our colleagues took it as a personal secret project to slowly go through all 10000 possible codes and collect the names of the people, just for the kick of it.

(By the way, I don't work for that company anymore, and more importantly, the company does not use that building anymore, so don't get any ideas! 🙃 )

Geek Squad, We were flying under the radar upgrading Macbook RAM, until one day we became officially Apple Authorized to fix iPhones, which means we were no longer allowed to upgrade Macbook RAM since the Macbooks were older and considered "obsolete" by apple, meaning we were unable to repair or upgrade the hardware the customer paid for, simply because apple said it was "too old". it was at this point in my customer interaction, that we recommend a repair shop down the road that isn't held at gunpoint by apple ;)

Anybody knows that one waterfall attraction in the Southeast US? The one that advertises bloody everywhere? Waterfall is pumped during the dry seasons, otherwise there'd be nothing to see. Lots of the formations are fake, and the Cactus and Candle formation was either moved from a different spot in the cave, or is from a different cave in New Mexico. Management doesn't want people to know that, but fuck 'em.

I worked for lumber liquidators, and their point of sale software seemed to be surplus navy because if you dug deep enough you could order nuclear sub parts.

Back when I managed a Blockbuster Video, most stores ran at a loss thanks to theft.

The real reason most stores failed wasn't because DVDs were going out. It was because we couldn't stem the flow of money out the door thanks to thieves.

S&P and Moody's were collaborating since at least 2000 on the pricing of the so-called "esoteric" structured instruments associated with mortgaged-backed securities that caused the 4Q07 crash. They collaborated via the competitive intelligence firm Washington Information Group (which does not seem to be around anymore.) The collaboration was almost certainly illegal (IANAL). They did this because neither wanted a price war when rating these. I did sign an NDA with S&P that kept me out of the industry for two years. I left the industry shortly after that and went back to what I used to do.

Worked at a globally popular fast food francise many years ago. They had collection boxes for a charity that they raised money for. None of the money went to that charity, but was divided between owners and managers.

A national (not US) cake company uses expired ingredients because it's cheaper. Yes, I did report them to the authorities.

At Disneyland, Mickey Mouse is always played by a woman, due to the small costume. So if you put your arm around him for a photo, try not to accidentally touch Mickey’s boobs.

That I made their DropBox account, and they can't access it anymore..

I worked with people from many indian IT companies who just outright clone github repos and tell clients they developed the entire thing from scratch.

I used to work at a hotel and they never changed the duvet covers guest to guest, only the other sheets.

An European Country stores citizens' critical data in vulnerable databases, whose password is in HaveIBeenPwned, on a VPN whose certificates are stored in random NASs. The IT guys don't know how encryption and certificates work and I wouldn't be surprised if everything was in some adversary countries' hands

Office Depot sells printers at very low (or even negative) margin, and then inflates the margins on cables, paper, ink, and warranty. If you want the best deal, get the printer from OD, and everything else you need somewhere else. That $20 USB cable they sell costs them $1 and you can get the same or better online for $2.68.

I work in IT. Most systems have laughable security. Passwords are often saved in plain text in scripts or config files. I went to a site to help out a very large provincial governmental organization move some data out of one system and into another. They sat me down with a loaner laptop and the guy logged me into his user account on the server. When I asked for escalated privileges, he told me he'd go get someone who knew the service account passwords.

After a few minutes, I started poking around on my own... And had administrative access within an hour. I could read the database (raw data), access documents, start and stop the software, plus, figured out how to get into the upstream system that fed data to this server... I was working on figuring out the software's admin password when the guy came back. I'm sure that given some more time, I could have rooted the box because the OS hadn't been updated in years.

The first steel mill I worked for, the test requirements were more of a suggestion than a rigid specification. I, a trained and skilled engineer with the capacity to make informed decisions, had to run all rejections by my boss who would tell me "it's close enough" even if it wasn't. Sometimes it bit us in the ass with warranty failures, but the warranties were probably cheaper than internal rejections (and what is brand perception worth?).

My second steel mill job, I was the one making the rejection decisions. I did the hard thing and rejected our failures but I also troubleshot them to prevent recurrence, making our product and capability better over time.

It very much matters who you buy your steel from; two mills can have vastly different performance for the same products based on how they handle these situations.