Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.

TL;DR: Keep browsing to your local instance at work for now.

  • AphoticDev
    link
    fedilink
    261 year ago

    Well, you should be using a VPN for privacy anyway, so that wouldn’t be a problem.

      • @[email protected]
        link
        fedilink
        English
        14
        edit-2
        1 year ago

        Its worth noting, you cant actually MITM most traffic without device acess. To MITM my lemmy traffic, you would need either a copy of the certificate and private key of for example lemmy.world, which they would never willingly provide, or you would need to get a valid certificate from a CA for lemmy.world, which you could never get without verifying ownership of the domain.

        If you are using a company owned device to browse Lemmy, then 100% they can very easily install a custom Root CA and make their own certificates, and you should assume all your traffic is monitored. But if they allow BYOB or for your phone to be on the network, then they would be unable to see that traffic without you being able to tell, because you would get certificate errors.

        But if they allow you to install a VPN, then just use TOR with a TOR bridge and you wouldnt have issues, because they cant tell its VPN / TOR traffic akaik

      • @[email protected]
        link
        fedilink
        English
        51 year ago

        So if you were, say, using a VPN on your personal phone at work on their internet, would you also get in trouble?

        • @[email protected]
          link
          fedilink
          51 year ago

          If it’s a personal device, at worst they would see you are using a VPN and maybe ask what’s up with that, but they can’t mitm you on your own device.

        • @[email protected]
          link
          fedilink
          English
          41 year ago

          Why would you join your phone to the company wifi? Mobile data is cheap (at least where I am). I’ve never joined my personal phone to an employer’s wifi. At least not in the last five or so years.

          • ᗪᗩᗰᑎ
            link
            fedilink
            11 year ago

            cell reception is spotty where I work and there’s a guest WiFi option and they allow VPN. works Wi-Fi works for my use case.

          • @[email protected]
            link
            fedilink
            11 year ago

            Why would you join your phone to the company wifi? Mobile data is cheap (at least where I am).

            Where I am, I’m on prepaid. It’s not cost-effective to pay for a full plan (when eg.: I already have internet at home).

      • AphoticDev
        link
        fedilink
        31 year ago

        Unless you’re handing your phone over and letting them root it, they almost certainly are not MITMing your traffic. At best, they can see you’re using a VPN. If they are able to snoop your traffic, either your VPN is absolutely shit, or you changed some setting you shouldn’t have and fucked yourself.

      • AphoticDev
        link
        fedilink
        191 year ago

        You’re using personal software like Lemmy on your company phone?

          • AphoticDev
            link
            fedilink
            81 year ago

            That was my response. You shouldn’t be doing personal tasks on a work phone. Has that ever been a thing corporations wouldn’t immediately fire you for? VPN or not, NSFW or SFW, don’t browse Lemmy or other social media on your work devices. Ever. Depending on who you work for, it could even be highly illegal, especially if it’s a government job.

            • CheezyWeezle
              link
              41 year ago

              Eh, my work explicitly states we can use our work laptop for personal use as long as it doesn’t interfere with work. We can even install software if we want, but there are a lot of security features that ensure you can’t put anything wonky on there.

              That said, I usually steer away from social media on my work laptop, except some highly moderated and text-focused places like resetera.

            • @woodenskewer
              link
              31 year ago

              A lot of people really just don’t get this. I had to explain to a couple people they can go look at basically anything they want as to what you’re looking at. Less is more. We have an app on all company phones called lookout that monitors everything including GPS than you can’t turn off. I hate it. I have to keep my phone on when I’m at home too so I extra don’t like it.

            • @Modern_medicine_isnt
              link
              21 year ago

              Yes there has ever been a corp that wouldn’t fire you for that. Everywhere I have worked actually. They just warn you that they can see what you are doing.

            • QuinceDaPence
              link
              fedilink
              11 year ago

              There’s some at mine that don’t even have a personal and I don’t get it. You leave and have to change your number and deal with all that crap plus if you have to have an account sent you a text.

              They told me that was an option an I was like Fuuuuck no, I keep that shit separate. I still get calls on my work phone when the previous guys kid needs to be picked up from daycare.

    • @Ironfist
      link
      21 year ago

      omg people, dont do personal stuff on your work machine or connected to your work network. A vpn wont save you from all the software they install in your machine to track you. Use your phone with your mobile data.