this post was submitted on 30 Jun 2024
99 points (97.1% liked)
Malicious Compliance
21646 readers
3 users here now
People conforming to the letter, but not the spirit, of a request. For now, this includes text posts, images, videos and links. Please ensure that the “malicious compliance” aspect is apparent - if you’re making a text post, be sure to explain this part; if it’s an image/video/link, use the “Body” field to elaborate.
======
-
We ENCOURAGE posts about events that happened to you, or someone you know.
-
We ACCEPT (for now) reposts of good malicious compliance stories (from other platforms) which did not happen to you or someone you knew. Please use a [REPOST] tag in such situations.
-
We DO NOT ALLOW fiction, or posts that break site-wide rules.
======
Also check out the following communities:
!fakehistoryporn@lemmy.world !unethicallifeprotips@lemmy.world
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I refuse to install any work related software on my phone. Not only because I don’t want to be contacted after hours, but companies often “require” full read/write access on your device, so they can remotely wipe their data if you quit or get fired.
Fuck that.
No modern MDM solution allows a company to access your personal data on BYOD. That's why containerization of work profiles exist. Anything else would be a massive privacy scandal.
Company-owned devices, though, do have that level of access when MDM enrolled.
Intune installs as a device adminstration. I'm not sure how much I'd trust that on my personal device period.
They can say what they like.
VERY few companies have been sued for being as big a bunch of lying dinks as Microsoft has.
We need to learn from this shit. Ads on login screens? Privacy issues? Solarwinds sploit letting Russian hackers get to the windows source? How many more red flags are our security groups going to ignore?
That's a fair point. Microsoft says that they don't... but, not that they can't. It's especially tricky on iOS.
You're talking about MDM in Intune which is only used on corporate owned devices. MAM is used for personal devices and does not have device administration access. It's in the name - Mobile Application Management.
https://learn.microsoft.com/en-us/mem/intune/fundamentals/intune-planning-guide#personal-devices-vs-organization-owned-devices
Good luck if you run a de-googled ROM. I can't install sandboxed Google Play Services inside the profile because its not approved. I could try and sideload it in, but I'd rather just go without.
This is absolutely correct. Heck, you're free to deny that based on any reasoning, maybe the shoddy icon of the work app doesn't match your phone wallpaper.
The phone is your private property, if an employer requires an app to be installed to do your job, they can provide a phone.
I would also never let corporate IT manage a device, e. g. a laptop connected to my private network at home.
I'm with you there. My previous employer wanted a bunch of their shit on my phone. I asked if they were supplying me with a work a phone, and they said no, you already have one. I said I do, and it's mine, and I'm not putting anything on it for work because work and home are going to be two different things. They gave me a work phone and then wanted to know why I turned it off in the parking lot before I even got into my car. I'm done working for the day sir.
My co-worker locked his in his desk drawer when he went home for the night.