In my experience, locking down non-work sites is much less common than locking down USB devices and unknown executables. USB devices and random executables are more of a security risk as a USB drive can be used to exfiltrate data very quickly while an executable could contain ransomware, other malware, keyloggers, etc. Sites are sandboxed and limited in terms of what they can do.
Comment on My new favourite password manager
nyar@lemmy.world 8 months agoAnd not lock down random external sites they see a user visiting every day that aren’t related to their work functions? Sounds like the SOC needs to get better at their monitoring.
dan@upvote.au 8 months ago
Rootiest@lemm.ee 8 months ago
Like the other commenter said, typically websites are less locked down.
It’s simpler to sandbox the browser and prevent unauthorized software from running than to block out most of the Internet and deal with complaints all day about the web restrictions