AAD misconfiguration led to Bing.com results manipulation, account takeover

+0.30	AAD misconfiguration led to Bing.com results manipulation, account takeover (www.wiz.io)
	391 points by alosch7 1068 days ago \| 106 comments on HN \| Moderate positive ~lite vlite-1.4

Summary ~lite Data Security Acknowledges

Exposes AAD misconfiguration risks, implies rights concerns

EQ 0.60

SO 0.70

TD 0.40

Lite evaluation by llama-4-scout-wai · editorial channel only · no per-section breakdown available

Longitudinal · 3 evals

Audit Trail 9 entries

2026-02-28 10:30	eval_success	Lite evaluated: Moderate positive (0.30)	- -
2026-02-28 10:30	eval	Evaluated by llama-4-scout-wai: +0.30 (Moderate positive)
	reasoning ED, implicit rights discussion via security exposure
2026-02-28 10:30	rater_validation_warn	Lite validation warnings for model llama-4-scout-wai: 0W 1R	- -
2026-02-28 10:29	eval_success	Lite evaluated: Mild positive (0.10)	- -
2026-02-28 10:29	rater_validation_warn	Lite validation warnings for model llama-3.3-70b-wai: 0W 1R	- -
2026-02-28 10:29	eval	Evaluated by llama-3.3-70b-wai: +0.10 (Mild positive) 0.00
	reasoning Tech blog exposes security flaw
2026-02-28 10:24	eval_success	Lite evaluated: Mild positive (0.10)	- -
2026-02-28 10:24	eval	Evaluated by llama-3.3-70b-wai: +0.10 (Mild positive)
	reasoning Tech blog exposes security flaw
2026-02-28 10:24	rater_validation_warn	Lite validation warnings for model llama-3.3-70b-wai: 0W 1R	- -

build 17fce23+nb6a · deployed 2026-03-02 20:24 UTC · evaluated 2026-03-02 19:26:26 UTC