Very generous of you to blame the screw up of one of the largest companies in the world on a jr engineer.

I’ve been a jr engineer at a large company. I had the power to implement absolutely jack shit on my own. I deeply doubt the security flow for account recovery in meta ai account security was a single jr engineer.

What i think is actually going on is basically a soft form of ai psychosis. Senior engineer gets ai to code ai account recovery feature, that same or a different engineer asks ai to review the feature, and then it gets pushed to prod. Move fast, break things. The ai coded it, the ai reviewed it - the people trusted the ai because it sounds confidently right.

Just like how the ai doesn’t know if you should walk or drive to the car wash, the ai doesn’t understand exploits like this one.