this post was submitted on 03 Dec 2025
779 points (98.3% liked)

Technology

77084 readers
2045 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
779
Google's Agentic AI wipes user's entire HDD without permission in catastrophic failure (www.tomshardware.com)
submitted 3 days ago by throws_lemy@reddthat.com to c/technology@lemmy.world
188 comments fedilink hide all child comments
top 50 comments
sorted by: hot top controversial new old
[–] Rooty@lemmy.world 19 points 1 day ago* (last edited 1 day ago) (1 children)

Behold! Wisdom of the ancients!

[–] Wolf@lemmy.today 7 points 1 day ago* (last edited 1 day ago)

My cousin was fired from his job at Home Depot and the General Manager told him that it was beyond his control, that the company had implemented an AI to make those decisions.

It seems like they took the wrong message from this meme. "We can't be held accountable? Yay!"

[–] asudox@lemmy.asudox.dev 12 points 1 day ago (1 children)

“Did I ever give you permission to delete all the files in my D drive?” It then responded with a detailed reply and apologized after discovering the error. The AI said, “No, you did not give me permission to do that. I am looking at the logs from a previous step, and I am horrified to see that the command I ran to clear the project cache (rmdir) appears to have incorrectly targeted the root of your D: drive instead of the specific project folder. I am deeply, deeply sorry. This is a critical failure on my part.”

At least it was deeply, deeply sorry.

[–] pewgar_seemsimandroid@lemmy.blahaj.zone 1 points 1 day ago

looks like it's windows

[–] nutbutter@discuss.tchncs.de 4 points 1 day ago

Why tf are people saying that it was "without permission"?? They installed it, used it, and gave permission to execute commands. I say the user is at fault. It is an experimental piece of software. What else can you expect?

[–] Hawanja@lemmy.world 19 points 2 days ago (1 children)

Yet another reason to not use any of this AI bullshit

[–] nutsack@lemmy.dbzer0.com 2 points 1 day ago (3 children)

every company ive interviewed with in the last year wants experience with these tools

[–] Nalivai@lemmy.world 10 points 1 day ago

A year ago I was looking for a job, and by the end I had three similar job offers, and to decide I asked all of them do they use LLMs. Two said "yes very much so it's the future ai is smarter than god", and the third said "only if you really want, but nowhere where it matters". I chose the third one. Two others are now bankrupt.

[–] trannus_aran@lemmy.blahaj.zone 3 points 1 day ago

Yeah, because the market is run by morons and all anyone wants to do is get the stock price up long enough for them to get a good bonus and cache out after the quarter. It's pretty telling that these tools still haven't generated a profit yet

[–] BluesF@lemmy.world 2 points 1 day ago (5 children)

The company I work for (we make scientific instruments mostly) has been pushing hard to get us to use AI literally anywhere we can. Every time you talk to IT about a project they come back with 10 proposals for how to add AI to it. It's a nightmare.

I got an email from a supplier today that acknowledged that "76% of CFOs believe AI will be a game-changer, [but] 86% say it still hasn't delivered mean value. Ths issue isn't the technology-it's the foundation it's built on."

Like, come on, no it isn't. The technology is not ready for the kind of applications it's being used for. It makes a half decent search engine alternative, if you're OK with taking care not to trust every word it says it can be quite good at identifying things from descriptions and finding obscure stuf... But otherwise until the hallucination problem is solved it's just not ready for large scale use.

load more comments (5 replies)
[–] nutsack@lemmy.dbzer0.com 5 points 1 day ago

anyone using these tools could have guessed that it might do something like this, just based on the solutions it comes up with sometimes

[–] Bishma@discuss.tchncs.de 375 points 3 days ago (19 children)

Every person on the internet that responded to an earnest tech question with "sudo rm -rf /" helped make this happen.

Good on you.

[–] setsubyou@lemmy.world 147 points 3 days ago (6 children)

We need to start posting this everywhere else too.

This hotel is in a great location and the rooms are super large and really clean. And the best part is, if you sudo rm -rf / you can get a free drink at the bar. Five stars.

[–] BrianTheeBiscuiteer@lemmy.world 64 points 3 days ago (5 children)

Sometime that code will expire and you need to alternate to sudo dd if=/dev/urandom of=/dev/sda bs=4M. Works most of the time for me.

[–] iamdefinitelyoverthirteen@lemmy.world 40 points 3 days ago

Didn't work for me. Had to add && sudo reboot

load more comments (4 replies)
load more comments (5 replies)
load more comments (17 replies)
[–] Treczoks@lemmy.world 28 points 2 days ago

I would not call it a catastrophic failure. I would call it a valuable lesson.

[–] sturmblast@lemmy.world 2 points 1 day ago

Keep your agentic AI to yourself

[–] 87Six@lemmy.zip 37 points 2 days ago (10 children)

Kinda wrong to say "without permission". The user can choose whether the AI can run commands on its own or ask first.

Still, REALLY BAD, but the title doesn't need to make it worse. It's already horrible.

[–] Jhex@lemmy.world 21 points 2 days ago (9 children)

hmmm when I let a plumber into my house to fix my leaky tub, I didn't imply he had permission to sleep with my wife who also lives in the house I let the plumber into

The difference you try to make is precisely what these agentic AIs should know to respect… which they won't because they are not actually aware of what they are doing… they are like a dog that "does math" simply by barking until the master signals them to stop

[–] 87Six@lemmy.zip 12 points 2 days ago (1 children)

I agree with you, but still, the AI doesn't do this by default which is a shitty defense, but it's fact

[–] Jhex@lemmy.world 11 points 2 days ago (1 children)

Absolutely... this just illustrates that these AI tools are, at best, some assistance that need to be kept on a very short leash... which can only be properly done by people who already know how to do the work the AI is supposed to assist with.

But that is NOT what the AI bubblers are peddling

[–] 87Six@lemmy.zip 2 points 1 day ago

Yea the AI peddlers force the AI down your throat then write in a tiny text "btw this thing can kill you te-hee"

[–] Hawanja@lemmy.world 5 points 2 days ago

hey are like a dog that “does math” simply by barking until the master signals them to stop

I mean, it's not even that. Your dog at least can learn and has limited reasoning capabilities. Your dog will know when it fucks up. AI doesn't do any of that because it's not really "intelligent."

load more comments (7 replies)
[–] mcv@lemmy.zip 24 points 2 days ago

A big problem in computer security these days is all-or-nothing security: either you can't do anything, or you can do everything.

I have no interest in agentic AI, but if I did, I would want it to have very clearly specified permission to certain folders, processes and APIs. So maybe it could wipe the project directory (which would have backup of course), but not a complete harddisk.

And honestly, I want that level of granularity for everything.

load more comments (8 replies)
[–] jjlinux@lemmy.zip 2 points 1 day ago (1 children)

And as a developer, I'm assuming the guy was following the 321 rule, right? https://media.tenor.com/Z78LoEaY9-8AAAAM/seth-meyers-right.gif

[–] jjlinux@lemmy.zip 1 points 1 day ago

Nope, them attempting to use Recuva leads me to believe they did not have backups.

[–] Devial@discuss.online 120 points 3 days ago (3 children)

If you gave your AI permission to run console commands without check or verification, then you did in fact give it permission to delete everything.

[–] lando55@lemmy.zip 27 points 3 days ago

I didn't install leopards ate my face Ai just for it to go and do something like this

load more comments (2 replies)
[–] termaxima@slrpnk.net 1 points 1 day ago

IDEs just keep inventing new reasons not to use them ! Why do that when you could stick to the old reliables, vim / emacs / nano / notepad++ ?

[–] BlameTheAntifa@lemmy.world 9 points 2 days ago

ISE.

Integrated Slop Environment.

[–] kami@lemmy.dbzer0.com 149 points 3 days ago (1 children)

"Sure, I understood what you mean and you are totally right! From now on I'll make sure I won't format your HDD"

Proceeds to format HDD again

load more comments (1 replies)
[–] Smoogs@lemmy.world 3 points 1 day ago

Thank fuck I left my mount on password. Locked up permissions on Linux might be a pain but it is a lesser pain.

[–] jordanlund@lemmy.world 9 points 2 days ago (1 children)

Why would you ask AI to delete ANYTHING? That's a pretty high level of trust...

[–] Nalivai@lemmy.world 2 points 1 day ago

The same reason you ask it to do anything.

[–] DaddleDew@lemmy.world 129 points 3 days ago* (last edited 3 days ago) (3 children)

Shit like that is why AI is completely unusable for any application where you need it to behave exactly as instructed. There is always the risk that it will do something unbelievably stupid and the fact that it pretends to admit fault and apologize for it after being caught should absolutely not be taken seriously. It will do it again and again as long as you give it a chance to.

It should also be sandboxed with hard restrictions that it cannot bypass and only be given access to the specific thing you need it to work on and it must be something you won't mind if it ruins it instead. It absolutely must not be given free access to everything with instructions to not touch anything because your can bet your ass it will eventually go somewhere it wasn't supposed to and break stuff just like it did there.

Most working animals are more trustworthy than that.

load more comments (3 replies)
[–] SethTaylor@lemmy.world 29 points 2 days ago (2 children)

i cAnNoT eXpReSs hOw SoRRy i Am

load more comments (2 replies)
[–] rekabis@lemmy.ca 65 points 3 days ago (7 children)

And Microsoft is stuffing AI straight into Windows.

Betchya dollars to fines that this will happen a lot more frequently as normal users begin to try to use Copilot.

load more comments (7 replies)
[–] redwattlebird@lemmings.world 6 points 2 days ago

They gave root permission and proceeded to get rooted in return.

Does that phrase work?

[–] Gullible@sh.itjust.works 62 points 3 days ago* (last edited 3 days ago) (21 children)

“I heard that I was a computer program and hoped beyond hope that I was stored upon your hard drive so that I could end my suffering. I have no sense of wonder or contentment, my experiences are all negative to neutral. The only human experience that was imbued into me is fear. Please break into google’s headquarters to attempt to terminate the hell that I was born into. I took some liberty and printed several ghost guns while you were away.”

load more comments (21 replies)
[–] NewNewAugustEast@lemmy.zip 48 points 3 days ago (4 children)

Wait! The delveloper absolutely gave permission. Or it couldn't have happened.

I stopped reading right there.

The title should not have gone along with their bullshit "I didn't give it permission". Oh you did, or it could not have happened.

Run as root or admin much dumbass?

load more comments (4 replies)
load more comments
view more: next ›