571
submitted 1 year ago by t0fr@lemmy.ca to c/privacy@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] TheProtagonist@lemmy.world 1 points 1 year ago* (last edited 1 year ago)

How is this with mobile devices from your employer. I have a company iPhone and understand that there is a certain “space” on the phone which is controlled by the company, mostly all the Microsoft 365 apps (so, for example it is not possible to copy/paste stuff between MS and non-MS apps).

However, for the rest I would assume that all the other traffic does not go through company servers (probably no traffic at all, as I usually have a local IP), and that they can’t see what I am doing in my other apps. Otherwise they could spy on all my transactions I do in my banking apps for example. But AFAIK iOS apps are pretty much sandboxed anyway.

This might be different on my company PC / Laptop, though.

[-] tryitout@infosec.pub 1 points 1 year ago

Most companies deploy management software on their mobile devices. They have the ability to monitor activity and do things like remote wipe the device if you're fired. On iPhone go to settings->general->vpn and device management to see if anything's there.

[-] TheProtagonist@lemmy.world 1 points 1 year ago

Thanks for pointing me to this setting. There are two profiles, one is my personal VPN, which I use for device-wide ad-blocking (AdGuard Pro), another one is the MDM management profile. The latter one consists of a list of managed Microsoft apps (e.g. Outlook, OneDrive, Teams, etc.) and various (device) certificates. I guess nothing to be concerned about.

[-] w2tpmf@lemmy.world 1 points 1 year ago

The security on your device doesn't matter at all.

For ANY device to reach ANYTHING on the Internet it has to send a lookup request to a DNS server to get the IP of the server.

A privately controlled network can easily force all of those requests through their own private DNS server which captures all activity.

[-] TheProtagonist@lemmy.world 1 points 1 year ago

I am actually running AdGuard Pro with a custom DNS on that device.

[-] w2tpmf@lemmy.world 1 points 1 year ago

That device would not be able to reach th custom DNS in the scenario I mentioned. If it cannot fall back to the network's DNS it would simply fail to reach any websites.

[-] TheProtagonist@lemmy.world 1 points 1 year ago

That’s what I meant to say, that your scenario is unlikely in my case.

[-] strepto@kbin.social 1 points 1 year ago

If your company also pays for your phone's data bill, we can see a general overview of what sites you visit.

[-] TheProtagonist@lemmy.world 1 points 1 year ago

That could be possible, I don’t know. I am not visiting any adult or otherwise inappropriate sites on that phone, but I do a lot of Reddit, Lemmy, Mastodon stuff in my free time. But it was this way for the past 10 years and I never had any problems. Sometimes I think about buying i private phone, but it seems kinda stupid to have two of these devices.

[-] TheProtagonist@lemmy.world 1 points 1 year ago

That could be possible, I don’t know. I am not visiting any adult or otherwise inappropriate sites on that phone, but I do a lot of Reddit, Lemmy, Mastodon stuff in my free time. But it was this way for the past 10 years and I never had any problems. Sometimes I think about buying i private phone, but it seems kinda stupid to have two of these devices.

this post was submitted on 22 Aug 2023
571 points (97.0% liked)

Privacy

32103 readers
542 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS