How do big tech cos and well-known Internet startups protect the notebooks/desktop endpoints used by their highly technical folks (i.e., engineers) from INTERNAL threats? Think companies like Google, Facebook, Uber, Reddit, Dropbox, ByteDance, …

The conflicts that I see is that endpoint protection tools traditionally used by big companies (think Windows Defender, Symantec EP, Sophos Endpoint) may be …

* (a) too restrictive in blocking software and thereby impact technical folks in their work
* (b) at the same time ineffective against a motivated technical insider who can find ways to circumvent the software
* (c) even more ineffective if said technical user has elevated system privileges due to their role

So, do highly technical folks at the mentioned companies have the same endpoint protection tools installed on their endpoints as “business users”?

Share This Discussion

1 Comment

  • ChineseAPTsEatBabies

    November 18, 2021

    They struggle, and they’re a total honey hole for anyone on the network.

    I’ve seen incidents where developers were compromised for months and the only reason evil was detected was the fact that the person left the company and yet some of their credentials were still showing up in logs.

    Reply

Leave a Comment

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.