What do Amazon monitor on the work laptop ?
5 years ago, my colleague posted some code on github with internal AWS account info n someone used that details n made a huge bill. When our org came to know about it, they made him leave. On the work laptop, I see this is a work laptop and all invalid activity is logged. What exactly Amazon monitors ? I know what can be done using present technology. I am more interested in knowing what's been monitored at present.
I’m not getting the connection between your doofus coworkers mistake and your laptop...
My coworker got caught by the huge bill. I am wondering if he would have caught if there is no huge bill
Companies scan github for accidentally leaked private keys, account codes, large chunks of internal source... they don’t need software on your laptop to do that.
Everything!
Elaborate plz. They technically can monitor. But do they really do ? Will there be action ? What are the things that trigger actions?
“Technically can monitor” = will monitor at some point. Let me make it simple: with work laptop, never install unlicensed (unless under GPL) software. Never share work related code on GitHub without first consulting your manager, IT, and possibly the legal dept. when you work for a company, they own the work laptop that they provide for you AND everything that gets saved on that laptop from the code you write to personal pictures you save on it. They can and will monitor everything. If you have AWS account on that laptop, you further put yourself at risk of being monitored by Amazon.
Don’t watch porn, don’t spend hours streaming Netflix, don’t use blind/Glassdoor/monster, don’t initiate gigabytes worth of uploads... use common sense.
Got it. But there are much valuable digital assets like google search algorithm or Amazon item display logic which does not take gigabytes but super valuable. How do they protect them from being downloaded outside
Lol. I did all of that + leetcode, when I was at Amazon.
Why are you worried about what happened five years back? Something is fishy
Sorry if you saw worries in my post. was curious. Asked the internal IT people but they are not aware of it or they dont want to disclose it. Thought blind community know better
Is connecting a personal HDD ok? Leetcode ok?
Nice try you dodgy ****
What does the huge AWS bill have to do with github? Was there s separate business being run using an internal AWS account? What kind of AWS activity?
If you keep aws access key/ secret key on public repo like git.. Hackers use it for launching computation intensive jobs like bitcoin farming. I'd is commom sense and recommended by aws not to keep access key/ secret key on code that resides on public repo. As matter of fact, aws themselves monitor public repos proactively and if they find any credential, they will contact account owner.
password on a public repo, wow. That sucks. I misread thinking public work using amazon email/aws account for the work. The laptop reference threw me off.
Boot up from an external hard drive, use full disk encryption too. They can’t monitor that. On your work computer and on work services they can see everything you do. Full file access, logs, web history, chat history, programs, and even stealth “RDP”. Lots of companies use jamf, look up what it supports, it’s like a virus. But there are others.
This is not true. The minute you logon and decrypt the drive they can monitor or log anything. Also they can log in the background when you are not on the internal network and then upload it when you do.
When I say boot from an external drive I mean a separate OS. Don’t ever mount your work partition. I should also add, if you boot from an external drive, don’t plug it in at work!
Tldr: "I want to do something against corporate policies using their resources, help me avoid getting caught like my co-worker did"
He probably got caught not because of his laptop
It's the high AWS monthly bill in his case
That’s easy to catch, I’m sure no one was deliberately tracking his activities on laptop, unless his manager was some kind of low person that had nothing else to do, and even then I don’t think they really can