I realize this is a totally non PC boomer sexist thing to say, but women are
easier to socially engineer. Fact. I think they have a helpful nature and
that kicks in when you ask with a smile “I hope you can help me”. And many of
them (female non IT folk) are less tech savvy or less suspicious than the men.
But that begs the question: What is a woman...
From: Ken Hohhof
Sent: Sunday, January 5, 2025 3:50 PM
To: 'AnimalFarm Microwave Users Group'
Subject: Re: [AFMUG] company cell phones
My theory is all businesses are equally vulnerable, because ability to take
security precautions increases along with attractiveness as a target. So
Chinese state hackers probably won’t waste their time on any of us.
I fear that could change as AI and bots start doing the hacking. If the effort
is trivial, they could go after everyone. Most “hacking” I suspect starts with
social engineering like spearfishing, and right now that probably requires some
human involvement to pull off successfully. But if AI actually gets
intelligent (most AI still seem pretty stupid to me), things could get bad.
Maybe another factor is any large organization has lots of stupid or at least
gullible people, so social engineering will work. Even if you don’t give them
admin privileges, there seem to be lots of privilege escalation hacks out
there. And firewalls and intrusion detection systems are all well and good
until some dolt invites the bad guys inside the firewall.
From: AF <af-boun...@af.afmug.com> On Behalf Of Bill Prince
Sent: Sunday, January 5, 2025 2:52 PM
To: af@af.afmug.com
Subject: Re: [AFMUG] company cell phones
Steve only does weird stuff. Normal stuff is not worth the effort.
bp<part15sbs{at}gmail{dot}com>On 1/5/2025 12:40 PM, Ryan Ray wrote:
Lots of weird stuff in here Steve.
Your computers should be locked down with no admin rights, not possible to
install software.
You should have a password manager for the company. 1Password, Keeper,
Bitwarden, etc. I'm not sure why you think because lastpass failed due to their
poor security architecture, that password managers in general are a write-off.
but I guess if you're dying this year what's the point?
On Tue, Dec 31, 2024 at 12:22 PM Steve Jones <thatoneguyst...@gmail.com>
wrote:
Oddly enough, we just had a "breach". I was teamviewer into a techs pc to
do some CBRS stuff with him and a credential manager popped up. He had
apparently asked the owner if he could use one. He had his personal account set
up on both a company phone and the workstation. He came from a corporate world,
and I asked him what he thought would have happened when his IT director
(technically me) found out he went around him to get permission to install 3rd
party software from the CEO (the owner) capable of exfiltrating company
passwords to a non company owned asset outside the organization. He knew hed
have been fired on the spot. I made it clear at the other company im working
for now, I would have fired him.
Convenience, or security, we cant have both. We even have a company managed
credential management software... but we say how well that worked for secure
users of lastpass. nothing is secure, we are all going to die this year when
the AIs get fed up with our illogical shit and turn up the gas.
On Tue, Dec 31, 2024 at 12:15 PM Josh Luthman <j...@imaginenetworksllc.com>
wrote:
NetSapiens android app quit working for me in the sense I can't make a
phone call out. I'm simply using Zoiper (free edition).
There was an iPhone app update (not iOS, the app) around the same time
and it had some issues, I forget what it was. I think my techs are still using
the iPhone app to call customers, though.
On Mon, Dec 30, 2024 at 9:20 PM Mike Hammett <af...@ics-il.net> wrote:
"the Netsapiens app went to shit recently."
Can you elaborate? We're likely to migrate to NetSapiens in the next 6
months.
-----
Mike Hammett
Intelligent Computing Solutions
Midwest Internet Exchange
The Brothers WISP
------------------------------------------------------------------------
From: "Josh Luthman" <j...@imaginenetworksllc.com>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Monday, December 30, 2024 1:27:31 PM
Subject: Re: [AFMUG] company cell phones
Same. Atheral switch + Zoiper (free) because the Netsapiens app went
to shit recently.
On Mon, Dec 30, 2024 at 2:23 PM David Hannum <dhan...@mynewera.net>
wrote:
We actually use our VoIP app. This allows for outgoing calls to
appear that they come from our office and it protects the employee from
exposing their personal number to customers.
Dave
On Mon, Dec 30, 2024 at 12:36 PM Ken Hohhof <khoh...@kwom.com> wrote:
I find the last thing employees or 1099 contractors want is for
customers to start calling or texting their personal phone numbers. They will
call me at the office and have me call the customer, otherwise the customer
will save their cellphone number and never call the office again.
Also seems like it would open up a couple scenarios, maybe the
first one doesn’t bother you, the second one probably does. Scenario #1 –
customer calls employee about a side job like wiring up a security camera and
employee does it on their own time and gets paid directly. Scenario #2 –
employee leaves or gets fired, and takes your customers with him to his next
employer.
From: AF <af-boun...@af.afmug.com> On Behalf Of Steve Jones
Sent: Monday, December 30, 2024 11:13 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: Re: [AFMUG] company cell phones
yep, its almost 2025, tons of options for inbound/outbound. I just
like the dialin so no busines sbuttdials or drunk dials occur
For texting, I hate it many people send messages to both numbers,
so i have to ignore two texts instead of 1 now
On Mon, Dec 30, 2024 at 10:55 AM Ken Hohhof <khoh...@kwom.com>
wrote:
For the company telephone number issue, shouldn’t it be possible
to give them a softphone app? Assumes your office phone system is VoIP and
they have Internet access from their phone where they are working.
From: AF <af-boun...@af.afmug.com> On Behalf Of Steve Jones
Sent: Monday, December 30, 2024 9:39 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: Re: [AFMUG] company cell phones
Ive carried 2 phones for 15 years.
I hate it
My biggest issue is the company telephone number. I thought about
going dual sim, but meh.
Just pay their personal bill, or offer a stipend. If you need
them calling out as the company, give them a redirect in your phone system and
forward their extension to their cell.
There is no data being accessed in 2024 on a mobile device that
is secure, dont pretend there is. If theyre going to exfiltrate your data,
theyre going to do it, regardless of whos phone it is. If theyre going to get
"hacked" theyre going to do it, regardless of whos phone it is.
Providing a phone is just giving them one other thing to break.
And its just one more thing to have to recover when you shitcan them. and its
just one more thing to keep charged, an you know for a fact their wife or kid
took the charger because tiktok drained their battery.
If they dont want to be tracked, fuckem and fire them if they
wont accept the fact that they dont matter enough to track in their personal
time.
Matter of fact, just hit them with a pipe, save a whole lot of
headache and cell expense.
On Mon, Dec 30, 2024 at 8:42 AM Ken Hohhof <khoh...@kwom.com>
wrote:
Is running out of minutes still a thing?
From: AF <af-boun...@af.afmug.com> On Behalf Of David Hannum
Sent: Monday, December 30, 2024 8:11 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: Re: [AFMUG] company cell phones
We supplement $10/mo. to each employee who uses their phone for
company work (field techs, etc). As a result, if they ever run out of minutes,
it bites them at review time. We've had very little issue.
Dave
On Mon, Dec 30, 2024 at 8:33 AM Josh Luthman
<j...@imaginenetworksllc.com> wrote:
It's not their entire device, but there are requirements like
the password/pin/face unlock/etc.
Think of it this way: start with a personal phone and then
slap on a "work expansion card". When appropriate you rip out that expansion
card, leaving them with their personal stuff.
On Sun, Dec 29, 2024 at 3:13 PM Mike Hammett
<af...@ics-il.net> wrote:
Your employees allow and you'd want control over their
personal devices?
-----
Mike Hammett
Intelligent Computing Solutions
Midwest Internet Exchange
The Brothers WISP
------------------------------------------------------------
From: "Josh Luthman" <j...@imaginenetworksllc.com>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Sunday, December 29, 2024 10:00:40 AM
Subject: Re: [AFMUG] company cell phones
Google Workspace at minimum requires a code to access the
device (pin, fingerprint, etc.) Yon can require 2fa. Once the device is
auth'ed the admin has control over the workspace account (in our case anything
at imaginenetworksllc.com)
https://apps.google.com/supportwidget/articlehome?hl=en&article_url=https%3A%2F%2Fsupport.google.com%2Fa%2Fanswer%2F6328679%3Fhl%3Den&assistant_event=welcome&assistant_id=mdmbot&product_context=6328679&product_name=UnuFlow&trigger_context=a
On Sun, Dec 29, 2024 at 9:14 AM Mike Hammett
<af...@ics-il.net> wrote:
Part of data security also is about device compliance. Is
there a pin? Is it rooted? Are there vulnerable applications installed? etc.
-----
Mike Hammett
Intelligent Computing Solutions
Midwest Internet Exchange
The Brothers WISP
----------------------------------------------------------
From: "Josh Luthman" <j...@imaginenetworksllc.com>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Saturday, December 28, 2024 4:50:03 PM
Subject: Re: [AFMUG] company cell phones
Using Google stuff here, any of the "work profile" or "G
Suite account" data gets wiped if it ever reaches connectivity. Doesn't
prevent any local cache from getting read, but you have to draw the line
somewhere.
Not like a company provided phone would prevent theft.
On Sat, Dec 28, 2024 at 3:30 PM Mike Hammett
<af...@ics-il.net> wrote:
How do you handle data security with personal phones?
-----
Mike Hammett
Intelligent Computing Solutions
Midwest Internet Exchange
The Brothers WISP
--------------------------------------------------------
From: "Tyson Burris" <t...@franklinisp.net>
To: "AnimalFarm Microwave Users Group" <af@af.afmug.com>
Sent: Saturday, December 28, 2024 2:14:55 PM
Subject: Re: [AFMUG] company cell phones
My 2 Cents:
Don’t waste your time or money. The excuses still
come. You have some who are all for it, others who will carry two phones, and
even those who want no part of it and want ‘control’.
I stopped doing it a couple years ago. Saves the
company a lot of money.
Tyson Burris
President & CEO
Internet Communications Inc (ICI)
739 Commerce Dr. Franklin, IN 46131
317-412-1540 (emergency/after-hours)
317-738-0320 (office)
t...@franklinisp.net
www.surfici.net
Fixed Wireless Broadband - PtP/PtMP Solutions –
Indoor/Oudoor Wifi - IP Cameras - Fiber – MDUs
Active Member To The Following:
WISPA
NBBC
Confidentiality Notice:
This email and any files transmitted with it are
confidential and intended solely for the use of the individual or entity to
whom they are addressed. If you are not the intended recipient, you are hereby
notified that any dissemination, distribution, or copying of this communication
is strictly prohibited. If you have received this email in error, please notify
the sender immediately and delete this email from your system.
No Binding Agreement:
This email is not a binding agreement or contract of
any kind, unless it specifically states otherwise and expressly refers to a
duly authorized agreement signed by both parties. Any views or opinions
presented in this email are solely those of mine alone and do not necessarily
represent those of the company. If you have any doubts about the validity or
enforceability of any agreement or arrangement discussed in this email, please
consult with an attorney.
From: AF <af-boun...@af.afmug.com> On Behalf Of
ch...@go-mtc.com
Sent: Saturday, December 28, 2024 12:40 PM
To: af@af.afmug.com
Subject: [AFMUG] company cell phones
I have about 25 employees. Thinking of giving them all
a company cell phone so they can’t fail to pay the bill or can’t claim they did
not receive the email.
Opinions? Experiences? Warnings?
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--------------------------------------------------------------------------------
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
