Posted by ColinWright 19 hours ago
Does anyone else get the impression that they feel like the nefarious surveillance state is now real and definitely not for their benefit?
It's been a long running trope of the men in black, and the state listening to your phone calls, etc. Even after Snowdon's leaks, where we learned that there are these massive dragnets scooping up personal information, it didn't feel real. It felt distant and possibly could have been a "probably good thing" that is it was needed to catch "the real bad guys".
It feels different now. Since last year, it feels like the walls are closing in a bit and that now the US is becoming... well, I can't find the words, but it's not good.
For each role I had described some of the tasks and accomplishments and this was used in the phishing message.
Since then, I removed my photo, changed my name only to initials and removed all the role-specific information.
It's a bit of a bummer as I'm currently in the process of looking for a new job and unfortunately having a LinkedIn profile is still required in some places, but once I find it, I'll delete my profile.
For remote jobs with remote interviews, not having a LinkedIn page or having a LinkedIn page full of generic information that can be disproven by a quick background check are common traits of scam applicants.
A friend’s employer started requiring more verification after they hired a group of remote workers who would some times connect from North Korean IPs when they made a mistake with their VPN.
Did you actually follow through with 1-4 and if so what was the outcome? how long did it take?
The government should provide an API or interface to validate a user, essentially acting just like an SSO. Instead of forcing users to upload raw passport scans to a third-party data broker, LinkedIn should just hit a government endpoint that returns an anonymized token or a simple boolean confirming "yes, this is a real, unique person." It gives platforms the sybil resistance they need without leaking the underlying PII.
This does not conform to the requirements of american KYC/AML provisions that require KYC service to store and leak PII.
We regulated innovation out of the market. Why are you surprises that the only companies finding your data valuable are in the US?
I was under the impression they just make database products. Do they have a side hustle involving collecting this type of data?
It can be some more nefarious use, but it can also just be that they (persona in this case) use their services to process/store your data.
I guess I'll just be in the corner crossing my fingers none of it is found in a hostile foreign land or used against me.
> Hesitation detection — they tracked whether I paused during the process
> They use uploaded images of identity documents — that’s my passport — to train their AI.
> Persona’s Terms of Service cap their liability at $50 USD.
> They also include mandatory binding arbitration — no court, no jury, no class action.
Every hiring process I've been through already requires proof of identity at some point. Background checks, I-9s, whatever it may be. So you're essentially handing your ID to a third party just to get a badge that doesn't skip any steps you'd have to do anyway.
Depends on the company, but in a competitive job market any extra signal can help.
There are a crazy number of fake LinkedIn profiles out there that are used for scamming companies or people.
(whether it actually does or the monkeys now got a steady source of fake/stolen IDs is another matter)