• Grandwolf319@sh.itjust.works
    link
    fedilink
    arrow-up
    7
    ·
    1 month ago

    Fair points but as someone who works in cybersecurity. Phishing emails can happen without admin access. I haven’t heard of any randsomware that is triggered by just clicking on a link.

    I think there should be some restrictions but highly technical people should slowly be given more and more control as they gain more trust/experience.

    • lud@lemm.ee
      link
      fedilink
      arrow-up
      4
      ·
      1 month ago

      Of course but the impact could be much worse if the victim is admin on their computer.

      • BilliamBoberts@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        1 month ago

        Exactly this. we try to prevent cyberattacks as much as we can, but at a certain point, they’re impossible to perfectly defend against without also totally locking down our users and making it impossible for them to do their jobs. so then the game becomes one of containing the amount of damage an attack can do.

        Security is restriction. our job is to balance our users’ ability to perform their jobs with acceptable levels of risk.

    • Omniraptor@lemm.ee
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      1 month ago

      Not a security guy but I heard there’s a whole term for it, “one-click attacks”