I refuse to install any work related software on my phone. Not only because I don’t want to be contacted after hours, but companies often “require” full read/write access on your device, so they can remotely wipe their data if you quit or get fired.
No modern MDM solution allows a company to access your personal data on BYOD. That’s why containerization of work profiles exist. Anything else would be a massive privacy scandal.
Company-owned devices, though, do have that level of access when MDM enrolled.
VERY few companies have been sued for being as big a bunch of lying dinks as Microsoft has.
We need to learn from this shit. Ads on login screens? Privacy issues? Solarwinds sploit letting Russian hackers get to the windows source? How many more red flags are our security groups going to ignore?
You’re talking about MDM in Intune which is only used on corporate owned devices. MAM is used for personal devices and does not have device administration access. It’s in the name - Mobile Application Management.
I refuse to install any work related software on my phone. Not only because I don’t want to be contacted after hours, but companies often “require” full read/write access on your device, so they can remotely wipe their data if you quit or get fired.
Fuck that.
No modern MDM solution allows a company to access your personal data on BYOD. That’s why containerization of work profiles exist. Anything else would be a massive privacy scandal.
Company-owned devices, though, do have that level of access when MDM enrolled.
Intune installs as a device adminstration. I’m not sure how much I’d trust that on my personal device period.
They can say what they like.
VERY few companies have been sued for being as big a bunch of lying dinks as Microsoft has.
We need to learn from this shit. Ads on login screens? Privacy issues? Solarwinds sploit letting Russian hackers get to the windows source? How many more red flags are our security groups going to ignore?
You’re talking about MDM in Intune which is only used on corporate owned devices. MAM is used for personal devices and does not have device administration access. It’s in the name - Mobile Application Management.
https://learn.microsoft.com/en-us/mem/intune/fundamentals/intune-planning-guide#personal-devices-vs-organization-owned-devices
That’s a fair point. Microsoft says that they don’t… but, not that they can’t. It’s especially tricky on iOS.