logoalt Hacker News

BrissyCodertoday at 9:11 AM10 repliesview on HN

This reads like internet fiction to me. Very vague and short.

Replies

yawniektoday at 9:21 AM

fwiw i know tobias and its very very unlikely he made this up. my guess its intentionally vague to not leak any information about the culprit which i guess is fair.

show 3 replies
abrookewoodtoday at 9:19 AM

Given the subject matter, it would be highly unethical to reveal the name of the company before verifying it was indeed fixed. I'd be wary of getting sued.

show 2 replies
samueltoday at 10:02 AM

I don't think it's the case, but it would be very funny that this would end being AI generated clickbait.

sixhobbitstoday at 9:31 AM

yeah keeping it vague makes sense to protect the place if it's still online but the whole thing doesn't really make sense?

The timelines mentioned are weird - he spoke to them before they built it? Or after? It's not that clear, he mentions they mentioned watching a video.

> The entire application was a single HTML file with all JavaScript, CSS, and structure written inline.

This is not my experience of how agents tend to build at all. I often _ask_ them to do that, but their tendency is to use a lot of files and structure

> They even added a feature to record conversations during appointments

So they have the front-desk laptop in the doctor's room? Or they were recording conversations anyway and now they for feed them into the system afterwards?

> All "access control" logic lived in the JavaScript on the client side, meaning the data was literally one curl command away from anyone who looked.

Also definitely not the normal way an agent would build something - security flaws yes, but this sounds more like someone who just learnt coding or the most upvoted post of all time on r/programmerhorror, not really AI.

Overall I'm skeptical of the claims made in this article until I see stronger evidence (not that I'm supporting using slop for a medical system in general).

show 7 replies
drkiz75today at 10:07 AM

Agreed. It’s right there at plausibly deniable just short of falsifying facts you could look up.

watwuttoday at 9:37 AM

Short writing is just a good writing. Also, it was not vague, it just omitted identifying information.

rubzahtoday at 9:35 AM

I assure you that these kinds of things are happening right now.

camillomillertoday at 10:36 AM

It’s Germany, you want to be as generic as you can because libel, privacy and similar laws are pretty strong here

no_shadowban_9today at 10:46 AM

[dead]

spacebacontoday at 9:18 AM

[flagged]