logoalt Hacker News

Aurornisyesterday at 11:39 PM20 repliesview on HN

It gets even worse. The person not only kept the laptop and used an exploit to download confidential Apple documents, they bragged about it to a contact who was still working at Apple who was also feeding him information:

> Liu allegedly kept an Apple-issued laptop after departing the company and exploited a vulnerability to download dozens of confidential Apple documents while he was working at OpenAI. He also maintained a relationship with Yu-Ting "Alyssa" Peng, an Apple employee who continued to give him updates on Apple's projects, vendor decisions, and engineering details. When Liu learned he still had access to Apple's systems, he texted Peng "LOL, I found out I can access the [network storage], so funny."

This is how you behave when you think you're so much smarter than everyone around you that consequences don't apply to you.

Whenever I leave a company I make sure everything that belongs to the company goes back to them and I wipe any access credentials or authenticator codes that might be on any of my devices. I can't imagine being so brazen that you'd keep the company laptop and then start using an exploit to download confidential information for your new employer.

Doing it at a the company that most aggressively enforces secrecy is even crazier.


Replies

taurathtoday at 8:08 AM

> This is how you behave when you think you're so much smarter than everyone around you that consequences don't apply to you.

Its also how some folks act like when they've done something they morally can't deal with - their subconscious starts throwing all sorts of obvious signs up until they get caught. I presume this was done for a giant pile of cash, stock, and probably a promise that nobody really cares if you show up or not, enjoy your retirement.

show 4 replies
grvdrmtoday at 1:58 AM

>This is how you behave when you think you're so much smarter than everyone around you that consequences don't apply you.

Spot on perfect. I see this too often and not just in tech.

show 2 replies
throw0101atoday at 12:56 AM

> Whenever I leave a company I make sure everything that belongs to the company goes back to them […]

At $WORK we have the option of getting a work smartphone or having the company pay for (at portion of) our monthly mobile bill.

I chose a work device because I do not want any cross-contamination. (Others chose payment because they did not want the 'hassle' of carrying a second device (and to save some cash).)

show 7 replies
HumblyTossedtoday at 4:03 PM

> Whenever I leave a company I make sure everything that belongs to the company goes back to them and I wipe any access credentials or authenticator codes that might be on any of my devices. I can't imagine being so brazen that you'd keep the company laptop and then start using an exploit to download confidential information for your new employer.

I work from home and I have a lot of equipment here (because of what I do - think sensor fusion). Everything is labeled with a bright sticky tape that signifies it belongs to my employer. If I'm not using something at the moment, it's safely stowed in a box that is labeled. My SO knows where everything is, so in the event something happens, they know who it belongs to and who to call. In addition, I keep an inventory sheet of everything. I broke it all down easily so that my SO doesn't have to worry. By doing this, it makes it easy on me as well to know what I have, how long I've had it, when it needs to be returned by, etc.

None of that belongs to me, but they trust me with it and I respect that and I take excellent care of all of it. The mindset that these ex-employees have is just mind blowing. I couldn't fathom doing that.

show 1 reply
khurstoday at 12:05 AM

"Whenever I leave a company I make sure..."

But its also that companies responsibility to ensure that the employer doesn't take anything.

Apple know how to use MDM on Apple laptops, why wasn't the device locked and located.

show 6 replies
JumpCrisscrossyesterday at 11:56 PM

We need criminal charges to be filed against Liu, Tan and Peng. (And deep discovery to find anything Altman might have said to or about them.)

show 2 replies
throwaway94949today at 2:41 PM

> This is how you behave when you think you're so much smarter than everyone around you that consequences don't apply to you.

Found out I already had a bank account with €2000 balance in my name. Temptation was high to take over the account and withdraw the cash.

Fortunately didn't touch a dime.

Long story short, my identity got stolen, account was used to collect eBay scam money and cash out from ATMs. I was a suspect and investigated for money laundering and membership to organised crime.

I had to sue the Prosecutor's Office to have them investigate the scammers and confirm my innocence. They initially refused because it was too hard... Italy.

show 1 reply
AnthonyMousetoday at 6:02 PM

> This is how you behave when you think you're so much smarter than everyone around you that consequences don't apply to you.

I think this is a cultural difference between security people and large populations of ordinary people. Security people tend to know both that breaking into something is generally possible if you put enough effort into it and that corporations are full of little napoleons who will try to curse your entire family for five generations if you embarrass them in public. And then "never affront the lawnmower" becomes a cultural norm out of self-preservation.

Whereas for ordinary people, even in tech, seeing a security lapse is often met with some combination of cynicism and schadenfreude and "LOL" seems like a pretty normal response.

Also notice that you're reading the company's version of events, which is naturally casting this exchange as a conspiracy against the company rather than the former employee reporting the security lapse to their contact who still works there who should have passed it up the chain -- but might not if they're afraid of sticking their hand in the lawnmower.

Meanwhile I have trouble feeling outrage at this sort of thing because I don't think legal protection of trade secrets is a good policy. Competitors have a moral obligation to uncover things like this to increase competition in the market and if the company wants legal protection for its technology then it should file a patent (which will subsequently expire to the benefit of the public) rather than expecting public assistance for its attempt to sustain a monopoly rent forever.

cushtoday at 5:19 AM

> Whenever I leave a company I make sure everything that belongs to the company goes back

It’s a total liability to hold onto anything. Even if you don’t do anything with it, it could get stolen or misplaced, and you’re liable. Not worth the headache.

steve_adams_86today at 12:35 AM

> Whenever I leave a company I make sure everything that belongs to the company goes back to them

Right. I noticed a coworker who recently left the organization was still running some of our software on his personal computer (evident in the access logs) and notified him that I could see, he should be more careful, etc. We agree to these contracts because compliance matters, not just because we need the job.

joe_mambatoday at 12:05 AM

>Whenever I leave a company I make sure everything that belongs to the company goes back to them

Because you're probably come from a high trust culture where you've been taught reciprocal trust, responsibility and accountability, but there's people coming from low trust environments where exploiting loopholes and scamming everyone outside their inner circle is the norm, and it's the way they learned to get ahead in life, from school all the way to work and business.

They're brazen because they've never been caught or suffered consequences for their actions.

This isn't something you can screen for in a classic job interview.

show 7 replies
inigyoutoday at 2:57 AM

Rich people do this all day and it's why they're rich. There's nothing shocking about seeing a non-rich person try the same thing in hopes of becoming rich.

mvkeltoday at 5:00 AM

> "People just submitted it. I don't know why. They 'trust me'. Dumb f*ks" - Mark Zuckerberg

Sometimes there are no consequences

breppptoday at 2:53 PM

> >This is how you behave when you think you're so much smarter than everyone around you that consequences don't apply you.

To me this sounds more like an extreme response to imposter syndrome, as in take the documents and the actual knowledge with you so you won't be exposed

__natty__today at 11:15 AM

OpenAI chosen not the sharpest tool in the shed

reactordevtoday at 1:00 AM

When espionage was your goal all along...

show 1 reply
xyzsparetimexyztoday at 12:40 AM

> Whenever I leave a company I make sure everything that belongs to the company goes back to them

Meh, I'm not returning my nice 4k wfh monitor unless they ask for it specifically

show 1 reply
ookblahtoday at 6:10 AM

lol openai will be fine, but this guy and everyone in his blast radius is fucked. play stupid games win stupid prizes.

atomicnumber3yesterday at 11:57 PM

Nah man that's how you end up in the permanent underclass. If you want to make it you have to throw everyone and everything else under the bus, be a bizarrely mustache-twirling evil misanthrope and general freakazoid-type loser, and most importantly get too big to fail / too rich to sue bc you have the good lawyers who can basically stall suits to death. Here's an application to Wendy's.

show 2 replies