Situation :—- A friend of mine received an email from Microsoft audit team in which they (audit team) provided pictures and asked for explanation that is why he shared these pictures outside the organization. He took his laptop screen pictures from his mobile and shared to his family or friend through iMessage/WhatsApp. 1. A couple of pictures that he took mentioned his current salary and vested amount. 2. A couple of them were taken when he was stuck in a code and asked suggestion from his friend (who is working outside Microsoft). He does not recall all the conversation he had with his friend when he shared those pictures and neither does he have backup to see the exact reason/discussion he had but all of them were related to small petty stuff. Q. What he should do in this case and how to handle? Q. What could be the best and worst case scenario that may come out after he is going to have meeting with audit team? Appreciate any suggestion/help and happy to discuss over phone. Thank you. #engineering #software #swe #microsoft #microsoftemployees
May be read the privacy information on permissions & personal data also check if screenshots were shared via messaging too. DLP is pretty strong on win mac linux and maybe enrolled handheld too. But i doubt, likely somebody circulated it and reached legal or some person who just reported it maybe. Do let us know if you get to know anything.
They are basically looking for confidential info shared without right authority or IP theft which doesn’t look like in this case as you described here so just explain it to them.
Fake post
I wish it was true! Never mind. Appreciate advice / suggest related to the situation. Please avoid writing such comments if you don’t know the truth and/or you never faced such situation. I’ve read the email and have seen the pictures that audit team sent so unfortunately this is not a fake post!
OP, iPhone or Android user?
Iphone
Sounds serious - I would retain an attorney for guidance. This feels like something that would lead to termination.
Nothing wrong with sharing salary / comp info so that’s probably fine right ? Could the other item have been an accident? Take screenshots on accident all the time!
Could find vpn running on phone which got detected when I was trying to install a mobile banking app. Could OPs case be a potential leak of data through VPN
Tech Industry
Yesterday
3715
Asians - what are your thoughts on asian female white male ?
Tech Industry
Yesterday
1291
The end of Backdoor Roth?!
2024 Presidential Election
Yesterday
594
Heartwarming peaceful protests
India
Yesterday
541
Modi is a legend, will be remembered for centuries to come
Today I Learned
2h
255
How many books do you usually read in a year?
This is more complicated than explained. Was the phone corp device? What kind of access was given to office apps? Every investigation starts with a manual complaint. You are not working in NSA or CIA where your devices are regulated & scanned on regular basis. Someone must have raised concern to the compliance & legal team.
The phone was a personal device and he has office apps installed like Authenticator, Teams, MS Defender. Regarding the kind of access , all the access that the apps requested and teams app does need photos access so teams app had photos access for sure. Not sure if someone raised a concern and he is a good person and never had a conflicts.
Did he have intune or not?