Hey everyone! I'm curious about your thoughts on what concerns we should have regarding international travel from the US, especially because I need to present these from an IT standpoint for my staff. We're a legal non-profit and it's possible we could attract some unwanted attention from the current administration, so government-sponsored monitoring is a real consideration and not just paranoia. I'm looking for a comprehensive list of concerns to address, and I've put together a bunch so far, but I'm wondering if I've missed anything. Here's what I've thought of: 1. Risks of account hijacking when removing geoblocks, which could expose us to low-skill attacks. 2. Mobile device security, with a mandate to use Intune Company Portal even on personal devices that are linked to our network. 3. Data security, especially regarding local storage and metadata. 4. The implications of border crossings and potential device reviews by Customs and Border Protection (CBP). 5. Issues related to IT staffing, monitoring, and budgeting for security. 6. The need for staff security training and compliance. 7. Concerns about nation-state surveillance, including tools like Pegasus, even if the risks may appear lower than people think. 8. Questions around the use of 'burner' devices and why they might not be a practical solution. I appreciate any insights you might have!
2 Answers
Regarding account hijacking, while it doesn’t seem directly linked to US government surveillance, it’s smart to limit access based on necessity. For mobile device security, enforcing that all devices must be trusted is essential. Data-wise, consider not storing any sensitive information locally. Instead, users should connect to an office machine via RDP or VDI to keep data secure. Lastly, for border crossings, it’s wise to only enable access to approved machines while users are overseas, disabling it again before they return to the US.
Good points on nation-state surveillance. Even if the risk seems low, it can still be significant. Physical access to devices gives total access, and we should not make it easy for them to exploit our systems. Keeping devices secure is crucial, and staff training on these threats is absolutely necessary to mitigate risks.
Absolutely, it’s better to be cautious. Physical security really is key, and having robust training programs can go a long way in safeguarding our organization.
Exactly! Not everything is about the government; it’s crucial to note potential risks for clarity. And yeah, ditching local data storage is the way to go. If you can’t afford a VDI setup, just be super cautious with data on personal devices.