Comment on Microsoft's latest Windows update breaks VPNs, and there's no fix
Kethal@lemmy.world 6 months agoMy workplace requires VPN for Web sites that are authenticated, require 2FA and are encrypted. It’s infuriatingly stupid. I feel like someone higher up got sold a useless contract by a god VPN salesperson.
I applaud your IT leadership/CIO for being willing to do this.
Most companies are far too passive and think “aIt won’t happen to us”.
I’ve seen companies scammed of $1mil in a single transaction because they sent credentials in email, to a scammer.
Had they used a credential management system this wouldn’t have happened.
Every layer of security helps.
Yeah, maybe they should encrypt it a third time. You never know.
Badeendje@lemmy.world 6 months ago
Most likely all connections are run through the gateway of the company allowing them to apply security to all web traffic on their clients.
It might hinder you but there is plenty of method to this madness.
AlphaAutist@lemmy.world 6 months ago
Ya that just sounds like good practice for internal services.
@Kethal@lemmy.world Maybe see if you can use a FIDO2 device like yubikey for 2fa