I just read this article http://bits.blogs.ny...?pagewanted=all about workplaces monitoring/taking snapshots of workers computer desktop. Is there any way to know if I have something like this going on my work laptop?
Thanks in advance.
How to know if my PC is being monitored?
The tool hijackthis generates a good log file of all the stuff going on. Then googling the unknown processes and services lets you find out pretty quickly whether there are any threats.
Not if the software is smart/good or if you've got limited rights on the machine. The quickest and easiest way is to ask. If your manager doesn't trust you enough to have open communication... then you know.
I'm still not 100% sure because that would defeat the purpose of it. If hijackthis could pick it up then the administrator could simply block that program via group policy; problem solved.
We do this to some (very minor) extent when we are asked to, but it's through a server. The fire stations use VPN for now (until they get fiber ran to them) and they have to RDP into the fire stations main server to run the software for their reporting. When this happens you can simply interact with their session and do it in view only mode. This allows you to watch them in real-time and they have no clue they are being watched. I'm sure there are plenty of other ways, but this has worked so far from what was needed. So it is possible to do it without being detected both locally and remotely when needed.
We do this to some (very minor) extent when we are asked to, but it's through a server. The fire stations use VPN for now (until they get fiber ran to them) and they have to RDP into the fire stations main server to run the software for their reporting. When this happens you can simply interact with their session and do it in view only mode. This allows you to watch them in real-time and they have no clue they are being watched. I'm sure there are plenty of other ways, but this has worked so far from what was needed. So it is possible to do it without being detected both locally and remotely when needed.
Author
Not if the software is smart/good or if you've got limited rights on the machine. The quickest and easiest way is to ask. If your manager doesn't trust you enough to have open communication... then you know.
I asked. He said he doesn't know and I believe him, he is a good man.
I'm still not 100% sure because that would defeat the purpose of it. If hijackthis could pick it up then the administrator could simply block that program via group policy; problem solved.
We do this to some (very minor) extent when we are asked to, but it's through a server. The fire stations use VPN for now (until they get fiber ran to them) and they have to RDP into the fire stations main server to run the software for their reporting. When this happens you can simply interact with their session and do it in view only mode. This allows you to watch them in real-time and they have no clue they are being watched. I'm sure there are plenty of other ways, but this has worked so far from what was needed. So it is possible to do it without being detected both locally and remotely when needed.
You're right about hijackthis. I can't even install this kind of stuff. But where can I found more info on your "method"?
There are lots of ways to monitor your activity without needing anything installed on your machine, mailboxes can have access rights changed to allow admin/managers to view your emails, if your company uses a proxy server then they can see where people and probably who is viewing which sites.
I think it unlikely that you are being monitored unless you have given your company a reason to suspect you need to be
I think it unlikely that you are being monitored unless you have given your company a reason to suspect you need to be
This may not be a reliable method, but see if you can monitor graphs on your machine. Look out for unusual, but regular load spikes in network activity and CPU usage.
Process Explorer lists processes loaded on the machine, although it may not reveal rootkit based monitoring applications.
TCPView gives you a list of processes that either listen or communicate through a network port.
Running Wireshark might be an option, although I can't remember whether it requires admin privileges to capture network traffic.
If you have browsing access to the Program Files dir, you could see what's installed, and google up stuff that looks suss.
Process Explorer lists processes loaded on the machine, although it may not reveal rootkit based monitoring applications.
TCPView gives you a list of processes that either listen or communicate through a network port.
Running Wireshark might be an option, although I can't remember whether it requires admin privileges to capture network traffic.
If you have browsing access to the Program Files dir, you could see what's installed, and google up stuff that looks suss.
Author
I think it unlikely that you are being monitored unless you have given your company a reason to suspect you need to be
I think too I'm not. But I prefer to be in control of what's going on my computer. I want to know if to limit my gmail reading, skyping and etc. . These things don't reduce my productivity and I dont have terrible secrets, but I dont want someone else to look on it.
[quote name='someuser']
workplaces monitoring/taking snapshots of workers computer desktop ... But I prefer to be in control of what's going on my computer. I want to know if to limit my gmail reading, skyping and etc.
[/quote]
Does it matter? You should always assume they are.
You absolutely should limit your work activities to things that are work related or to activities that have explicit or tacit approval from your employer.
Actual law depends on location, but for most of the world employees have very few privacy rights with anything involved at work.
Employers can generally search their employee's cubicles, desks, and personal possessions kept in the office, much like you can search any room in your home or go through your child's backpack. Corporate objects belong to the company and they have no expectation of privacy. Personal objects you leave in the office have very little expectation of privacy.
If this is a work computer you really have no right to anything on it since it isn't yours; courts routinely find that you have no expectation of privacy on work computers, work networks, work email, or Internet access at work. Anything that goes through the corporate network or exists on a corporate computer is subject to inspection and review by the company. It is the company property, you are using it on the company's behalf, for the company's purposes.
They are probably not monitoring everything you do, unless you are working at a casino or other high-security job. They are most certainly logging your email communications; constant risk of lawsuits means mandatory data retention policies for these and other important tidbits. Some companies will have rolling taps for "training and performance monitoring purposes", and in many places they don't need to tell you since it was in your employment contract. Sysadmins can grab a constant live view of what sites you are viewing, what network connections are open, and what resources are in use, and have logs of what everyone does; again this is normally just ignored but when they start using the tools to check it out there is a very good chance the sysadmins will know exactly what you are doing every moment of the day.
You may not feel like it, but the company has some liability for everything their employers do with their equipment. Your employer is unlikely to be monitoring you while you check your gmail, but legally they generally have the right to watch what you are doing on their equipment. They have every right to fire you if you break corporate policy on your personal account if they happen to discover it was done on company equipment or on company time.
Of course, if they use that information to break into your gmail account or bank account or other non-work system, then they have gone too far. That is a different matter.
Just assume your company is monitoring everything if they own the computer. Assume that anything going through the corporate network is also monitored. The company generally has a legal right to do so, and can respond to anything they discover. If you are concerned about computer privacy leave the office and do it elsewhere.
workplaces monitoring/taking snapshots of workers computer desktop ... But I prefer to be in control of what's going on my computer. I want to know if to limit my gmail reading, skyping and etc.
[/quote]
Does it matter? You should always assume they are.
You absolutely should limit your work activities to things that are work related or to activities that have explicit or tacit approval from your employer.
Actual law depends on location, but for most of the world employees have very few privacy rights with anything involved at work.
Employers can generally search their employee's cubicles, desks, and personal possessions kept in the office, much like you can search any room in your home or go through your child's backpack. Corporate objects belong to the company and they have no expectation of privacy. Personal objects you leave in the office have very little expectation of privacy.
If this is a work computer you really have no right to anything on it since it isn't yours; courts routinely find that you have no expectation of privacy on work computers, work networks, work email, or Internet access at work. Anything that goes through the corporate network or exists on a corporate computer is subject to inspection and review by the company. It is the company property, you are using it on the company's behalf, for the company's purposes.
They are probably not monitoring everything you do, unless you are working at a casino or other high-security job. They are most certainly logging your email communications; constant risk of lawsuits means mandatory data retention policies for these and other important tidbits. Some companies will have rolling taps for "training and performance monitoring purposes", and in many places they don't need to tell you since it was in your employment contract. Sysadmins can grab a constant live view of what sites you are viewing, what network connections are open, and what resources are in use, and have logs of what everyone does; again this is normally just ignored but when they start using the tools to check it out there is a very good chance the sysadmins will know exactly what you are doing every moment of the day.
You may not feel like it, but the company has some liability for everything their employers do with their equipment. Your employer is unlikely to be monitoring you while you check your gmail, but legally they generally have the right to watch what you are doing on their equipment. They have every right to fire you if you break corporate policy on your personal account if they happen to discover it was done on company equipment or on company time.
Of course, if they use that information to break into your gmail account or bank account or other non-work system, then they have gone too far. That is a different matter.
Just assume your company is monitoring everything if they own the computer. Assume that anything going through the corporate network is also monitored. The company generally has a legal right to do so, and can respond to anything they discover. If you are concerned about computer privacy leave the office and do it elsewhere.
Even if they don't directly 'monitor' your workstation per say, they can still log and see pretty much anything you have done in retrospect. So no, it'd be very unwise to ever assume you aren't being monitored -- not that I think an employer monitoring his employees is very healthy; it implies mistrust and that is never good in a working relationship...
This topic is closed to new replies.
Advertisement
Popular Topics
Advertisement
