this post was submitted on 20 Mar 2024
1335 points (98.4% liked)

Technology

59641 readers
3649 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] ieatpillowtags@lemm.ee 117 points 8 months ago (6 children)

It seems as though nobody in this thread actually read the article. They are not revealing user names on the site. The objection here is having the real name as part of your private profile data, in case of a future data breach. It’s a real concern, but orders of magnitude less serious than what everybody is assuming.

Shame on Ars for the misleading clickbait headline.

[–] myliltoehurts@lemm.ee 50 points 8 months ago (1 children)

Agree that it's misleading, but to add there is another significant concern given how glassdoor is already "pay to win" from the companies perspective: they could just offer identifying the users as a paid service.

It would be digging their own grave if that starts happening, but that doesn't seem to be stopping many companies..

[–] laurelraven@lemmy.blahaj.zone 4 points 8 months ago

You mean digging it even deeper than they already did with this?

[–] nyan@lemmy.cafe 44 points 8 months ago (1 children)

They are not revealing user names on the site.

You mean, "They are not currently revealing user names on the site." This may easily be the first temperature increment in a frog-boiling process.

(Cynical? Yes, but the world keeps reinforcing that attitude.)

[–] ieatpillowtags@lemm.ee 10 points 8 months ago

Agreed, but the article title implies that they are in fact currently revealing names, which is just not the case.

[–] flumph@programming.dev 25 points 8 months ago (1 children)

I'm more concerned that the company decided it was OK to meld the "From:" line of her email (asking for support) into her profile. If they think that's an appropriate way to handle PII, I don't trust them.

[–] ieatpillowtags@lemm.ee 10 points 8 months ago

What they’re actually doing is super shady, and reason enough to cause concern without exaggerating.

[–] KingThrillgore@lemmy.ml 18 points 8 months ago

It's not that, its the risk they could get subpoenaed and then they have to turn over the CSVs that could identify users inadvertently.

Financial institutions who are currently having data breaches. This is the worst time to couple PII data So tightly.

The moment Glassdoor gets hacked, it'll be absolute shit show for whistleblowers.

[–] Kbobabob@lemmy.world 6 points 8 months ago (1 children)

This doesn't really make it any better though, IMO

[–] asdfasdfasdf@lemmy.world 18 points 8 months ago (2 children)

You really don't think "we store your username and haven't revealed it" is any better than "we store your real name and did reveal it"?

[–] ieatpillowtags@lemm.ee 14 points 8 months ago (1 children)

I swear some people are just contrary.

[–] the_crotch@sh.itjust.works 11 points 8 months ago

No they're not

[–] laurelraven@lemmy.blahaj.zone 7 points 8 months ago

For a supposedly anonymous site that's going to be a target from both hackers and companies looking to reveal that data, I'd say it's not really any better, just delayed. All it takes is someone finding a SQL injection vulnerability on the site to scrape the user database, or a court to rule that they have to turn that data over to a company looking to go after an employee, or even just someone with the right access at the company clicking the wrong link

If you want to be anonymous, the first step is to not give people your name or other PII