What do Amazon monitor on the work laptop ?

Amazon sdemp
May 18 28 Comments

5 years ago, my colleague posted some code on github with internal AWS account info n someone used that details n made a huge bill. When our org came to know about it, they made him leave.

On the work laptop, I see this is a work laptop and all invalid activity is logged. What exactly Amazon monitors ?

I know what can be done using present technology. I am more interested in knowing what's been monitored at present.

comments

Want to comment? LOG IN or SIGN UP
TOP 28 Comments
  • Don’t watch porn, don’t spend hours streaming Netflix, don’t use blind/Glassdoor/monster, don’t initiate gigabytes worth of uploads... use common sense.
    May 18 6
    • Google Mirzapur
      Lol. I did all of that + leetcode, when I was at Amazon.
      May 18
    • New / Eng Bsky
      @mirza are you in their India office?
      May 19
    • Google / Eng
      Shaktiman’

      Google Eng

      PRE
      Amazon
      Shaktiman’more
      I used it for leetcode too when at Amazon.
      May 19
    • Oracle pzd
      Lol did all of the above on all of my work laptop
      May 19
    • They aren’t going to fire you for glassoor/leetcode/hackerrank/whatever, but if they are looking for an excuse already then it will just be fuel
      May 19
  • Amazon yacht 🛥
    He probably got caught not because of his laptop
    May 18 2
    • Amazon sdemp
      OP
      It's the high AWS monthly bill in his case
      May 18
    • Amazon yacht 🛥
      That’s easy to catch, I’m sure no one was deliberately tracking his activities on laptop, unless his manager was some kind of low person that had nothing else to do, and even then I don’t think they really can
      May 18
  • I’m not getting the connection between your doofus coworkers mistake and your laptop...
    May 18 2
    • Amazon sdemp
      OP
      My coworker got caught by the huge bill. I am wondering if he would have caught if there is no huge bill
      May 18
    • Companies scan github for accidentally leaked private keys, account codes, large chunks of internal source... they don’t need software on your laptop to do that.
      May 19
  • Microsoft / Eng kbsbkxb
    Tldr: "I want to do something against corporate policies using their resources, help me avoid getting caught like my co-worker did"
    May 19 0
  • Nice try you dodgy ****
    May 19 0
  • eBay / Other ebabe
    Boot up from an external hard drive, use full disk encryption too. They can’t monitor that.

    On your work computer and on work services they can see everything you do. Full file access, logs, web history, chat history, programs, and even stealth “RDP”.

    Lots of companies use jamf, look up what it supports, it’s like a virus. But there are others.
    May 19 2
    • Nvidia wagecuck
      This is not true. The minute you logon and decrypt the drive they can monitor or log anything. Also they can log in the background when you are not on the internal network and then upload it when you do.
      May 19
    • eBay / Other ebabe
      When I say boot from an external drive I mean a separate OS. Don’t ever mount your work partition.

      I should also add, if you boot from an external drive, don’t plug it in at work!
      May 19
  • Amazon qwertyup
    What does the huge AWS bill have to do with github? Was there s separate business being run using an internal AWS account?
    What kind of AWS activity?
    May 19 2
    • Accenture bindok
      If you keep aws access key/ secret key on public repo like git.. Hackers use it for launching computation intensive jobs like bitcoin farming. I'd is commom sense and recommended by aws not to keep access key/ secret key on code that resides on public repo. As matter of fact, aws themselves monitor public repos proactively and if they find any credential, they will contact account owner.
      May 19
    • Amazon qwertyup
      password on a public repo, wow. That sucks.
      I misread thinking public work using amazon email/aws account for the work. The laptop reference threw me off.
      May 19
  • Accenture bindok
    Why are you worried about what happened five years back? Something is fishy
    May 18 1
    • Amazon sdemp
      OP
      Sorry if you saw worries in my post. was curious. Asked the internal IT people but they are not aware of it or they dont want to disclose it. Thought blind community know better
      May 18
  • Seagate toti420
    Everything!
    May 18 2
    • Amazon sdemp
      OP
      Elaborate plz. They technically can monitor. But do they really do ? Will there be action ? What are the things that trigger actions?
      May 18
    • Seagate toti420
      “Technically can monitor” = will monitor at some point.
      Let me make it simple: with work laptop, never install unlicensed (unless under GPL) software. Never share work related code on GitHub without first consulting your manager, IT, and possibly the legal dept. when you work for a company, they own the work laptop that they provide for you AND everything that gets saved on that laptop from the code you write to personal pictures you save on it. They can and will monitor everything. If you have AWS account on that laptop, you further put yourself at risk of being monitored by Amazon.
      May 18
  • Amazon qwertyup
    OP, are you asking how not to publish your aws credentials on github?

    You are asking in a public group, not even the company specific room, what is secure and what is not.

    Work resources are only for work and apparently leetcode. Anything can be monitored on the internal network and laptop, so if you want to roll the dice it is up to you.

    From the question alone, my guess is that you will also run up a big bill and definitely get caught.
    May 19 0
  • Microsoft / Eng mantier
    Is connecting a personal HDD ok? Leetcode ok?
    May 18 0