Security researchers discovered that a weak password used by Paradox.ai allowed access to sensitive personal information of millions of job applicants for McDonald's, exposing 64 million records. Additionally, a malware infection on a Paradox developer's device compromised various internal and third-party credentials, raising concerns about the company's security practices despite previous audits.