Re: [AFMUG] company cell phones

Ken Hohhof Sun, 05 Jan 2025 14:51:37 -0800

My theory is all businesses are equally vulnerable, because ability to take 
security precautions increases along with attractiveness as a target.  So 
Chinese state hackers probably won’t waste their time on any of us.


 

I fear that could change as AI and bots start doing the hacking.  If the effort 
is trivial, they could go after everyone.  Most “hacking” I suspect starts with 
social engineering like spearfishing, and right now that probably requires some 
human involvement to pull off successfully.  But if AI actually gets 
intelligent (most AI still seem pretty stupid to me), things could get bad.

 

Maybe another factor is any large organization has lots of stupid or at least 
gullible people, so social engineering will work.  Even if you don’t give them 
admin privileges, there seem to be lots of privilege escalation hacks out 
there.  And firewalls and intrusion detection systems are all well and good 
until some dolt invites the bad guys inside the firewall.

 

From: AF <af-boun...@af.afmug.com> On Behalf Of Bill Prince
Sent: Sunday, January 5, 2025 2:52 PM
To: af@af.afmug.com
Subject: Re: [AFMUG] company cell phones

 

Steve only does weird stuff. Normal stuff is not worth the effort.

bp
<part15sbs{at}gmail{dot}com>

On 1/5/2025 12:40 PM, Ryan Ray wrote:

Lots of weird stuff in here Steve. 

Your computers should be locked down with no admin rights, not possible to 
install software. 

You should have a password manager for the company. 1Password, Keeper, 
Bitwarden, etc. I'm not sure why you think because lastpass failed due to their 
poor security architecture, that password managers in general are a write-off.

but I guess if you're dying this year what's the point? 

 

On Tue, Dec 31, 2024 at 12:22 PM Steve Jones <thatoneguyst...@gmail.com 
<mailto:thatoneguyst...@gmail.com> > wrote:

Oddly enough, we just had a "breach". I was teamviewer into a techs pc to do 
some CBRS stuff with him and a credential manager popped up. He had apparently 
asked the owner if he could use one. He had his personal account set up on both 
a company phone and the workstation. He came from a corporate world, and I 
asked him what he thought would have happened when his IT director (technically 
me) found out he went around him to get permission to install 3rd party 
software from the CEO (the owner) capable of exfiltrating company passwords to 
a non company owned asset outside the organization. He knew hed have been fired 
on the spot. I made it clear at the other company im working for now, I would 
have fired him. 

 

Convenience, or security, we cant have both. We even have a company managed 
credential management software... but we say how well that worked for secure 
users of lastpass. nothing is secure, we are all going to die this year when 
the AIs get fed up with our illogical shit and turn up the gas.

 

On Tue, Dec 31, 2024 at 12:15 PM Josh Luthman <j...@imaginenetworksllc.com 
<mailto:j...@imaginenetworksllc.com> > wrote:

NetSapiens android app quit working for me in the sense I can't make a phone 
call out.  I'm simply using Zoiper (free edition). 

 

There was an iPhone app update (not iOS, the app) around the same time and it 
had some issues, I forget what it was.  I think my techs are still using the 
iPhone app to call customers, though.

 

On Mon, Dec 30, 2024 at 9:20 PM Mike Hammett <af...@ics-il.net 
<mailto:af...@ics-il.net> > wrote:

"the Netsapiens app went to shit recently." 

 

Can you elaborate? We're likely to migrate to NetSapiens in the next 6 months.



-----
Mike Hammett
 <http://www.ics-il.com/> Intelligent Computing Solutions
 <https://www.facebook.com/ICSIL> 
Midwest Internet Exchange

The Brothers WISP






  _____  


From: "Josh Luthman" <j...@imaginenetworksllc.com>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Monday, December 30, 2024 1:27:31 PM
Subject: Re: [AFMUG] company cell phones

Same.  Atheral switch + Zoiper (free) because the Netsapiens app went to shit 
recently.

 

On Mon, Dec 30, 2024 at 2:23 PM David Hannum <dhan...@mynewera.net> wrote:

We actually use our VoIP app.  This allows for outgoing calls to appear that 
they come from our office and it protects the employee from exposing their 
personal number to customers. 

 

Dave

 

On Mon, Dec 30, 2024 at 12:36 PM Ken Hohhof <khoh...@kwom.com> wrote:

I find the last thing employees or 1099 contractors want is for customers to 
start calling or texting their personal phone numbers.  They will call me at 
the office and have me call the customer, otherwise the customer will save 
their cellphone number and never call the office again.

 

Also seems like it would open up a couple scenarios, maybe the first one 
doesn’t bother you, the second one probably does.  Scenario #1 – customer calls 
employee about a side job like wiring up a security camera and employee does it 
on their own time and gets paid directly.  Scenario #2 – employee leaves or 
gets fired, and takes your customers with him to his next employer.

 

From: AF <af-boun...@af.afmug.com> On Behalf Of Steve Jones
Sent: Monday, December 30, 2024 11:13 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: Re: [AFMUG] company cell phones

 

yep, its almost 2025, tons of options for inbound/outbound. I just like the 
dialin so no busines sbuttdials or drunk dials occur

 

For texting, I hate it many people send messages to both numbers, so i have to 
ignore two texts instead of 1 now

 

On Mon, Dec 30, 2024 at 10:55 AM Ken Hohhof <khoh...@kwom.com> wrote:

For the company telephone number issue, shouldn’t it be possible to give them a 
softphone app?  Assumes your office phone system is VoIP and they have Internet 
access from their phone where they are working.

 

From: AF <af-boun...@af.afmug.com> On Behalf Of Steve Jones
Sent: Monday, December 30, 2024 9:39 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: Re: [AFMUG] company cell phones

 

Ive carried 2 phones for 15 years.

I hate it

 

My biggest issue is the company telephone number. I thought about going dual 
sim, but meh.

Just pay their personal bill, or offer a stipend. If you need them calling out 
as the company, give them a redirect in your phone system and forward their 
extension to their cell.

 

There is no data being accessed in 2024 on a mobile device that is secure, dont 
pretend there is. If theyre going to exfiltrate your data, theyre going to do 
it, regardless of whos phone it is. If theyre going to get "hacked" theyre 
going to do it, regardless of whos phone it is.

 

Providing a phone is just giving them one other thing to break. And its just 
one more thing to have to recover when you shitcan them. and its just one more 
thing to keep charged, an you know for a fact their wife or kid took the 
charger because tiktok drained their battery.

 

If they dont want to be tracked, fuckem and fire them if they wont accept the 
fact that they dont matter enough to track in their personal time.

 

Matter of fact, just hit them with a pipe, save a whole lot of headache and 
cell expense.

 

 

On Mon, Dec 30, 2024 at 8:42 AM Ken Hohhof <khoh...@kwom.com> wrote:

Is running out of minutes still a thing?

 

From: AF <af-boun...@af.afmug.com> On Behalf Of David Hannum
Sent: Monday, December 30, 2024 8:11 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: Re: [AFMUG] company cell phones

 

We supplement $10/mo. to each employee who uses their phone for company work 
(field techs, etc).  As a result, if they ever run out of minutes, it bites 
them at review time.  We've had very little issue.

 

Dave

 

 

On Mon, Dec 30, 2024 at 8:33 AM Josh Luthman <j...@imaginenetworksllc.com> 
wrote:

It's not their entire device, but there are requirements like the 
password/pin/face unlock/etc.

 

Think of it this way: start with a personal phone and then slap on a "work 
expansion card".  When appropriate you rip out that expansion card, leaving 
them with their personal stuff.

 

On Sun, Dec 29, 2024 at 3:13 PM Mike Hammett <af...@ics-il.net> wrote:

Your employees allow and you'd want control over their personal devices?



-----
Mike Hammett
Intelligent Computing Solutions

Midwest Internet Exchange

The Brothers WISP








  _____  


 

 

 

 <https://www.facebook.com/ICSIL> From: "Josh Luthman" 
<j...@imaginenetworksllc.com>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Sunday, December 29, 2024 10:00:40 AM
Subject: Re: [AFMUG] company cell phones

Google Workspace at minimum <https://www.facebook.com/ICSIL>  requires a code 
to access the device (pin, fingerprint, etc.)  Yon can require 2fa.  Once the 
device is auth'ed the admin has control over the workspace account (in our case 
anything at imaginenetworksllc.com)

 <https://www.facebook.com/ICSIL>  

https://apps.google.com/supportwidget/articlehome?hl=en 
<https://www.facebook.com/ICSIL> 
&article_url=https%3A%2F%2Fsupport.google.com%2Fa%2Fanswer%2F6328679%3Fhl%3Den&assistant_event=welcome&assistant_id=mdmbot&product_context=6328679&product_name=UnuFlow&trigger_context=a

 <https://www.facebook.com/ICSIL>  

On Sun, Dec 29, 2024 at 9:14 AM Mike Hammett  <https://www.facebook.com/ICSIL> 
<af...@ics-il.net> wrote:

 <https://www.facebook.com/ICSIL> Part of data security also is about device 
compliance. Is there a pin? Is it rooted? Are there vulnerable applications 
installed? etc.

 <https://www.facebook.com/ICSIL> 

-----
Mike Hammett
Intelligent Computing Solutions

Midwest Internet Exchange

The Brothers WISP





 <https://www.facebook.com/ICSIL> 

 <https://www.facebook.com/ICSIL> 
  _____  


 

 

 

 <https://www.facebook.com/ICSIL> From: "Josh Luthman" 
<j...@imaginenetworksllc.com>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Saturday, December 28, 2024 4:50:03 PM
Subject: Re: [AFMUG] company cell phones

Using Google stuff here, any of the  <https://www.facebook.com/ICSIL> "work 
profile" or "G Suite account" data gets wiped if it ever reaches connectivity.  
Doesn't prevent any local cache from getting read, but you have to draw the 
line somewhere.

Not like a company provided phone would prevent theft.

 <https://www.facebook.com/ICSIL>  

On Sat, Dec 28, 2024 at 3:30 PM Mike Hammett  <https://www.facebook.com/ICSIL> 
<af...@ics-il.net> wrote:

 <https://www.facebook.com/ICSIL> How do you handle data security with personal 
phones?

 <https://www.facebook.com/ICSIL> 

-----
Mike Hammett
Intelligent Computing Solutions

Midwest Internet Exchange

The Brothers WISP





 <https://www.facebook.com/ICSIL> 

 <https://www.facebook.com/ICSIL> 
  _____  


 

 

 

 <https://www.facebook.com/ICSIL> From: "Tyson Burris" <t...@franklinisp.net>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Saturday, December 28, 2024 2:14:55 PM
Subject: Re: [AFMUG] company cell phones

 <https://www.facebook.com/ICSIL> My 2 Cents:

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> Don’t waste your time or money.  The excuses 
still come.  You have some who are all for it, others who will carry two 
phones, and even those who want no part of it and want ‘control’.

 <https://www.facebook.com/ICSIL> I stopped doing it a couple years ago.  Saves 
the company a lot of money.

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL>  


Tyson Burris 
President & CEO 

 


Internet Communications Inc (ICI)

739 Commerce Dr. Franklin, IN 46131 

 

317-412-1540 (emergency/after-hours) 
317-738-0320 (office)
 t...@franklinisp.net <mailto:t...@franklinisp.net>  
  www.surfici.net <http://www.surfici.net>  

 



 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> Fixed Wireless Broadband - PtP/PtMP Solutions 
– Indoor/Oudoor Wifi - IP Cameras - Fiber – MDUs  

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> Active Member To The Following:

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> WISPA

 <https://www.facebook.com/ICSIL> NBBC

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> Confidentiality Notice: 

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> This email and any files transmitted with it 
are confidential and intended solely for the use of the individual or entity to 
whom they are addressed. If you are not the intended recipient, you are hereby 
notified that any dissemination, distribution, or copying of this communication 
is strictly prohibited. If you have received this email in error, please notify 
the sender immediately and delete this email from your system.

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> No Binding Agreement:

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> This email is not a binding agreement or 
contract of any kind, unless it specifically states otherwise and expressly 
refers to a duly authorized agreement signed by both parties. Any views or 
opinions presented in this email are solely those of mine alone and do not 
necessarily represent those of the company. If you have any doubts about the 
validity or enforceability of any agreement or arrangement discussed in this 
email, please consult with an attorney.

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> From: AF <af-boun...@af.afmug.com> On Behalf 
Of ch...@go-mtc.com
Sent: Saturday, December 28, 2024 12:40 PM
To: af@af.afmug.com
Subject: [AFMUG] company cell phones

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> I have about 25 employees.  Thinking of 
giving them all a company cell phone so they can’t fail to pay the bill or 
can’t claim they did not receive the email.  

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> Opinions?  Experiences?  Warnings?

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> 
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 <https://www.facebook.com/ICSIL>  

--  <https://www.facebook.com/ICSIL> 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 <https://www.facebook.com/ICSIL> 
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 <https://www.facebook.com/ICSIL>  

--  <https://www.facebook.com/ICSIL> 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 <https://www.facebook.com/ICSIL> 
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 <https://www.facebook.com/ICSIL>  

 <https://www.facebook.com/ICSIL> -- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 <https://www.facebook.com/ICSIL> -- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com


-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

 

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com> 
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] company cell phones

Reply via email to