Work Home Separation
Contents
Full Title or Meme
Why we separate or work lives from our home lives.
Context
Users who have a network connected device and who have a job that requires access to an Enterprise's valuable content need to find a way to protect their own personal content separate from the access to content provided by the Enterprise. This is not something that the user's are particularly good at.
Managed by enterprise or Mobile Device Management for BYOD or bring your own device
Problems
Snowfake Incident
Snowfake, CrowdStrike, and Mandiant (part Of Google Cloud) just published a statement on Our preliminary findings associated with a threat campaign impacting Snowflake customers. Threat actors are actively compromising organizations' Snowflake customer tenants by using stolen credentials obtained by infostealing malware and logging into databases that are configured with single factor authentication. Any SaaS solution that is configured Without multifactor authentication is susceptible to be mass exploited by threat actors We anticipate threat actors Will replicate this campaign across Other SaaS solutions that contain sensitive enterprise data. Here are some of Mandiant's Observations related to infostealers from the past few years: Since the beginning of 2020, employees and contractors working from home increasingly use their personal computers to access corporate systems. People often synchronize their web browsers on their work computers and personal computers. 9; People (or their children) sometimes inadvertently install software laced With info-stealing malware on their personal computers. The malware can capture credentials from their web browsers Threat actors opportunistically search for corporate credentials stolen by info-stealing malware and use them to compromise enterprises, steal data, and conduct extortion,
Snowflake Community https://community.snowflake.com
References
Other Material
- Wiki page on Device Management Managed by enterprise (aka BYOD or bring your own device) # Mobile Device Management for BYOD
- Wiki page on Mobile Device Management
- Wiki page on Digital Rights Management
