• TheProtagonist@lemmy.world
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    1 year ago

    How is this with mobile devices from your employer. I have a company iPhone and understand that there is a certain “space” on the phone which is controlled by the company, mostly all the Microsoft 365 apps (so, for example it is not possible to copy/paste stuff between MS and non-MS apps). However, for the rest I would assume that all the other traffic does not go through company servers (probably no traffic at all, as I usually have a local IP), and that they can’t see what I am doing in my other apps. Otherwise they could spy on all my transactions I do in my banking apps for example. But AFAIK iOS apps are pretty much sandboxed anyway. This might be different on my company PC / Laptop, though.

    • w2tpmf@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      The security on your device doesn’t matter at all.

      For ANY device to reach ANYTHING on the Internet it has to send a lookup request to a DNS server to get the IP of the server.

      A privately controlled network can easily force all of those requests through their own private DNS server which captures all activity.

    • strepto@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      If your company also pays for your phone’s data bill, we can see a general overview of what sites you visit.

      • TheProtagonist@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        That could be possible, I don’t know. I am not visiting any adult or otherwise inappropriate sites on that phone, but I do a lot of Reddit, Lemmy, Mastodon stuff in my free time. But it was this way for the past 10 years and I never had any problems. Sometimes I think about buying i private phone, but it seems kinda stupid to have two of these devices.

      • TheProtagonist@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        That could be possible, I don’t know. I am not visiting any adult or otherwise inappropriate sites on that phone, but I do a lot of Reddit, Lemmy, Mastodon stuff in my free time. But it was this way for the past 10 years and I never had any problems. Sometimes I think about buying i private phone, but it seems kinda stupid to have two of these devices.

    • tryitout@infosec.pub
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Most companies deploy management software on their mobile devices. They have the ability to monitor activity and do things like remote wipe the device if you’re fired. On iPhone go to settings->general->vpn and device management to see if anything’s there.

      • TheProtagonist@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Thanks for pointing me to this setting. There are two profiles, one is my personal VPN, which I use for device-wide ad-blocking (AdGuard Pro), another one is the MDM management profile. The latter one consists of a list of managed Microsoft apps (e.g. Outlook, OneDrive, Teams, etc.) and various (device) certificates. I guess nothing to be concerned about.