Google recently introduced a new 'Save to Drive' button in the PDF viewer within Chrome. This feature raises significant security concerns, especially in environments that aren't closely monitored. Users can easily transfer sensitive PDFs to their personal Google Drive accounts, completely sidestepping local data loss prevention (DLP) tools and any oversight on downloads. Since the process uses a direct Chrome-to-Drive API call, it doesn't even register as a typical upload in our Cloud Access Security Broker (CASB). My main questions are: has anyone else experienced this issue and found solutions? Also, is there a way to completely hide the button without disabling the built-in PDF viewer? I understand that switching to a different browser could solve the problem, but that's not a viable option for us at this time.
5 Answers
You can leverage the Purview extension for Chrome to enhance your DLP capability. It might help in managing this issue effectively. Check out Microsoft's documentation on it for more details.
Pushing users to a more secure browser like Edge could be a straightforward fix. Many businesses are already doing this to reinforce security. Why not give that a shot?
Have you considered using the Enterprise GPO templates? They might have options that allow you to block this 'Save to Drive' feature while still keeping the PDF viewer functional. Just a thought!
It's a valid concern, but remember that in unregulated environments, users can upload files to personal accounts just like they could save to OneDrive. The real issue seems to be around organizational security policies rather than Chrome itself.
Exactly! If the security policies are lax, this type of breach can happen in multiple ways.
Ultimately, if personal accounts are allowed on work devices, you're bound to face issues like this. It's a tricky balance between flexibility and security.
Exactly, it’s about setting the right boundaries and policies for the organization!
Totally! That could help mitigate some of these concerns. It's all about controlling the environment.