Malicious Compliance

21909 readers

3 users here now

People conforming to the letter, but not the spirit, of a request. For now, this includes text posts, images, videos and links. Please ensure that the “malicious compliance” aspect is apparent - if you’re making a text post, be sure to explain this part; if it’s an image/video/link, use the “Body” field to elaborate.

======

We ENCOURAGE posts about events that happened to you, or someone you know.
We ACCEPT (for now) reposts of good malicious compliance stories (from other platforms) which did not happen to you or someone you knew. Please use a [REPOST] tag in such situations.
We DO NOT ALLOW fiction, or posts that break site-wide rules.

======

Also check out the following communities:

!fakehistoryporn@lemmy.world !unethicallifeprotips@lemmy.world

founded 2 years ago

MODERATORS

109

Work from home (lemmy.world)

submitted 1 year ago by The_Picard_Maneuver@lemmy.world to c/maliciouscompliance@lemmy.world

82 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Kit@lemmy.blahaj.zone 2 points 1 year ago (1 children)

No modern MDM solution allows a company to access your personal data on BYOD. That's why containerization of work profiles exist. Anything else would be a massive privacy scandal.

Company-owned devices, though, do have that level of access when MDM enrolled.

[–] brax@sh.itjust.works 3 points 1 year ago (3 children)

Intune installs as a device adminstration. I'm not sure how much I'd trust that on my personal device period.

[–] corsicanguppy@lemmy.ca 3 points 1 year ago

They can say what they like.

VERY few companies have been sued for being as big a bunch of lying dinks as Microsoft has.

We need to learn from this shit. Ads on login screens? Privacy issues? Solarwinds sploit letting Russian hackers get to the windows source? How many more red flags are our security groups going to ignore?

[–] BarbecueCowboy@lemmy.world 3 points 1 year ago

That's a fair point. Microsoft says that they don't... but, not that they can't. It's especially tricky on iOS.

[–] Kit@lemmy.blahaj.zone 1 points 1 year ago* (last edited 1 year ago) (1 children)

You're talking about MDM in Intune which is only used on corporate owned devices. MAM is used for personal devices and does not have device administration access. It's in the name - Mobile Application Management.

https://learn.microsoft.com/en-us/mem/intune/fundamentals/intune-planning-guide#personal-devices-vs-organization-owned-devices

[–] tinkling4938@lemmynsfw.com 1 points 1 year ago

Good luck if you run a de-googled ROM. I can't install sandboxed Google Play Services inside the profile because its not approved. I could try and sideload it in, but I'd rather just go without.