https://arstechnica.com/security/2025/07/how-do-hackers-get-passwords-sometimes-they-just-ask/
My pathetic company outsourced our helpdesk to these Cognizant retards back in 2020 in the middle of Covid.

I literally read that transcript in their fucking broken English voice.
These dum dums only know how to read a fucking script, and have zero understanding of the company they support.
It took us MONTHS to train these morons. When they took over, our tickets went from like 120 total to over 2500 as they could not handle the ticket flow.
SLAs where trash.

Back when I worked the HD and someone called in for a password reset, we always had to verify who they were, asking for their employee ID, making some small chat, knowing who our end users are, never, ever, ever allowing them to log into any system without performing a manual password reset using a domain joined pc, there was no other way. Nothing would work until they connected to one.

After Covid and everyone went home, now VPN was involved. I never had anyone call in and ask for both VPN PIN reset and Windows Reset, and if they did, they were returning from maternity leaved, and I knew who they were personally.

Meanwhile these third party useless cunts from the Philippines just give away passwords over the phone and probably uncheck the "must change password before signing in" box in AD.
One of these numbnuts managed to reset every single OTKA PIN for everyone in the entire company, man, that was a shitty morning.
Scheduling install jobs on infinite repeat at like 3am bringing our deployment servers to a crawl
and of course, resetting passwords without asking for the users ID or PIN like they should.
Has anyone else had to deal with these 3rd party morons?