Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.

TL;DR: Keep browsing to your local instance at work for now.

  • smeg@feddit.uk
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    4
    ·
    1 year ago

    Always use a VPN when on a network you can’t trust. There are plenty of free and trustworthy ones you can activate with one click, and then all the company sees is noise.

      • XpeeN@sopuli.xyz
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        1 year ago

        RiseupVPN, calynx and protonvpn are pretty great and trustworthy. 2 first ones are non profit based on donations only. And proton VPN is well audited (but require account while the first two doesn’t)

      • smeg@feddit.uk
        link
        fedilink
        English
        arrow-up
        6
        ·
        1 year ago

        I use the free tier of Proton VPN, it’s been well audited and proven safe!

      • ferret@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        1
        ·
        1 year ago

        Cloudflare’s free VPN is trustworthy and very fast. You don’t get to pick server location though so it is only useful for cases like this.

      • outdated_belated@lemmy.sdf.org
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Different threat models. There’s the threat of being punished or fired by workplace surveillance;

        Separately, there’s also the threat of some unknown third-party snooping on your data for whatever other reason (identify fraud, etc).

        The post discusses the first and I’d argue that’s more compelling for most people, but the second is also valid.

    • visak@lemmy.world
      link
      fedilink
      arrow-up
      4
      ·
      1 year ago

      If the company owns the endpoint there’s lots they can do to monitor your traffic even with a VPN. For phones if you sign in to work mail with your phone and allow them to manage your device just assume they have control of it now.

      • smeg@feddit.uk
        link
        fedilink
        English
        arrow-up
        6
        arrow-down
        1
        ·
        1 year ago

        Never putting any of their software on your personal device is a good rule in general

          • Ajen@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            1 year ago

            And refusing to install your company’s software on your work computer is a good way to get fired for cause.

            But some people have the option to access work email, etc on their personal devices, as long as they install their company’s monitoring/security software.