this post was submitted on 22 Aug 2023
395 points (95.2% liked)

Work Reform

10009 readers
61 users here now

A place to discuss positive changes that can make work more equitable, and to vent about current practices. We are NOT against work; we just want the fruits of our labor to be recognized better.

Our Philosophies:

Our Goals

founded 1 year ago
MODERATORS
 

A new survey shows that the vast majority of senior executives say would've approached their return-to-work push "differently."

you are viewing a single comment's thread
view the rest of the comments
[–] malloc@lemmy.world 6 points 1 year ago (1 children)

Ever hear of a VPN? This is pretty standard "security" for most Fortune 500s. Home network can be a Starbucks WiFi, but unless you have the decryption keys you are not going to be able to intercept the traffic tunneled through a VPN.

[–] couragethebravedog@lemmy.world 3 points 1 year ago (1 children)

It's not just network security though, that was just one example I used. Another is protecting company IP. They could be working from home and a neighbor peek through the window and see what you're working on. Also that VPN isn't worth a damn if someone can get into your home and gain physical access to your device. Sure they could also break into an office, but offices usually have a security system with alarms, cameras, and sensors. They also usually have stronger doors and locks. Security is absolutely a valid reason to return to the office. I work in cybersecurity for the record and this is an actual reason being pushed for a return to the office.

[–] malloc@lemmy.world 1 points 1 year ago

They could be working from home and a neighbor peek through the window and see what you’re working on.

This is a joke, right? RTO won’t stop this “attack” either. Since we are looking at extreme situations, what’s to stop an attacker from using a high powered scope and peek at an executives computer? In an office environment you have plenty of targets to choose from and exfiltrate information.

Also, this is easily defeated by privacy screens. So this is a non-issue.

Also that VPN isn’t worth a damn if someone can get into your home and gain physical access to your device

You are right. Which is why multiple layers of defense is needed. VPN is just one layer, albeit a very poor “security by obscuration”

Ways to combat this is have data encrypted at rest, and in transit. Modern computers/OS have the ability to encrypt all data at rest. If computer is stolen, attacker can’t do much without the decryption keys. Also, thin clients (VDIs) can be used to further reduce chance of compromise of physical device. Data does not leave the secure data center of the firm.

Also, having applications / endpoints secured by MFA will help in reducing possible infiltration.

The only attack vector I can think of that will defeat these measures is a person held with a gun pointed to their head but this is why having multiple persons to confirm an action will help reduce the impact of one person.

but offices usually have a security system with alarms, cameras, and sensors

All easily defeated and poor security measures with the right motivation.

usually have stronger doors and locks

This is poor security as well. Perhaps even security theater. Unless the doors are bank vault level lol

None of the points you have given are valid in this digital age. A forced RTO is pointless.