• Art35ian@lemmy.world
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    1 year ago

    I’ve worked with massive customer databases of over a million people multiple times in jobs I’ve had. And while each company has spent tens-of-thousands of dollars in cyber security to protect that data from outside hackers, none have given any fucks at all about who accessed it internally or what they do with it.

    I’ve literally exported the entire customer database in two different jobs, dropped the CSV into my personal Google Drive (from my work computer), and worked entire databases at home.

    No one has ever known I’ve done it, cared, or checked if I have any customer personal data when I quit.

    • SupraMario@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Sounds like they didn’t spend any money on Cyber security’s team to properly implement it then…data exfil %100 would have been picked up by any real DLP solution and even barebones heuristics based EDR would have thrown a red flag as well.

      • Art35ian@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Haha, please. You’re talking about machine learning when the best any business is using is antivirus. You forget, Boomers are still running big business and IT departments are running security.

        It’s perfect world vs. real world my dude, and real world puts out tender for the cheapest solution.

      • AlexWIWA@lemmy.ml
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        1 year ago

        I’ve worked at plenty of companies with exfil protection and people still did this. One has 100 devs and 500 total employees