When Your Company Remote-Wipes Your Personal Phone

← Back to Stories (view on slashdot.org)

When Your Company Remote-Wipes Your Personal Phone

Posted by kdawson on Tuesday November 23, 2010 @10:33AM from the unfair-exchange dept.

Xenographic writes "NPR has a story about someone whose personal iPhone got remotely wiped by their employer. It was actually a mistake, but it was something of a surprise because they didn't believe they had given their employer any kind of access to do that. This may already be very familiar to Microsoft Exchange admins, but the problem was her iPhone's integration with MS Exchange automatically gives the server admin access to do remote wipes. All you have to do is configure the phone to receive email from an MS Exchange server and the server admin can wipe your phone at will. The phone wasn't bricked, even though absolutely all of its data was wiped, because the data could be restored from backup, assuming that someone had remembered to make one. But this also works on other devices like iPads, Blackberry phones, and other smartphones that integrate with MS Exchange. So if you read your work email on your personal phone or tablet, you might want to make sure that you keep backups, just in case."

38 of 446 comments (clear)

Min score:

Reason:

Sort:

we have the same policy at work by queen+of+everything · 2010-11-23 10:37 · Score: 5, Informative

We have the same policy and will only allow smart phones to connect to exchange when they have the remote wipe capability. It's to protect the company's interests should a phone be lost or stolen. When the users sign up for ActiveSync they have to "read" the terms and conditions where it states that it may be remotely wiped. I don't think most people read it but when you think about the type of proprietary (and often confidential) data your email inbox has, you have to understand why the company does it.

--
"Wisdom is not a product of schooling but of the life-long attempt to acquire it." -Albert Einstein
1. Re:we have the same policy at work by amicusNYCL · 2010-11-23 10:52 · Score: 5, Insightful
  
  I don't think most people read it but when you think about the type of proprietary (and often confidential) data your email inbox has, you have to understand why the company does it.
  That's a perfectly acceptable policy for any company that provides smart phones to its employees. I don't know if it's true with your company, but I would consider that an overreach if you want me to connect my personal phone with your network and give you the ability to delete all of my pictures and other personal data solely at your discretion. I'm sure you would understand why the owner would find that objectionable.
  
  --
  "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
2. Re:we have the same policy at work by Anonymous+Cowpat · 2010-11-23 10:54 · Score: 5, Insightful
  
  What do you do to protect your employees interests in not having their own data annihilated by accident?
  Also, are you expecting employees to take work with them, using their own devices; or is the company willing to bare the costs of either providing a device or the work not being done?
  It would seem most unusual to me for an employer to require their employees to provide expensive equipment for company use, and with the agreement that the company may treat it as its own.
  
  --
  FGD 135
3. Re:we have the same policy at work by Monkeedude1212 · 2010-11-23 10:59 · Score: 3, Informative
  
  We're actually dealing with a bit of backlash from having this policy - on both sides of the issue at the same time!
  I'll try to be as vague as possible to cover my butt - but basically someone who deals with Clients for their job was going to be let go. We wiped their phone, as standard policy. Not sure if they copied the data prior to leaving or if another employee helped them out, but they basically took contact information, pricing/quotes, certain client rates, etc etc and took that to help land another job with a competitor.
  Being in IT I know that it's going on as basically our "employee lifecycle" has come under review - but I'm not exactly on the legal team so I don't know how exactly it's progressing. But I know basically we pressed charges for selling trade secrets, and they are counter-suing for something along the lines of destruction of personal property for wiping EVERYTHING off of their phone.
  I am not aware of any actual "Agreement" to phone wipes besides possibly verbal ones between managers and their employees and/or IT - there isn't a lot of documentation on the subject matter anywhere - however since starting any time anyone has asked "Can you get my email sync'd on my phone?" My common response is "Yes, but you will be handing over control of ALL The phones data to the company so we can wipe it should you be terminated or leave the company, which includes all your personal phone numbers and appointments". I say it not only to actually warn people of the danger - but its actually a great deterrent and a lot of people reconsider and don't want it anymore, less work for me!
4. Re:we have the same policy at work by Capt.DrumkenBum · 2010-11-23 11:05 · Score: 3, Insightful
  
  I have the same thing here. I always inform staff that I can and will wipe their phones. At their request, and that they should inform me at once if they lose of have their phone stolen.
  My personal iphone is connected to a gmail account that I forward a copy of all my work email.
  That way I get work email, but it is still my account.
  
  --
  If I were God, wouldn't I protect my churches from acts of me?
5. Re:we have the same policy at work by Dynedain · 2010-11-23 11:06 · Score: 3, Insightful
  
  Then don't connect your personal phone to the company network.
  It's that simple. It's the company's data, not your personal data, and they have measures in place to protect it. If you don't want to abide by those measures, you don't have to.
  At least in the US, if you're required to provide equipment required by your job, and your employer doesn't pay for it, then you can write it off on against your personal tax burden. So if you find yourself in that rare situation where work requires you have a smartphone, and won't pay for it, get one separate than your private phone and save on your taxes at the end of the year.
  
  --
  I'm out of my mind right now, but feel free to leave a message.....
6. Re:we have the same policy at work by amicusNYCL · 2010-11-23 11:06 · Score: 2, Funny
  
  From TFA:
  
  Someone in the IT department had sent out what's called a "remote wipe," a kind of auto-destruct command that's delivered by e-mail.
  I'm really, really looking forward to the first story we get of an admin accidentally sending the message to a contact list, such as the entire company, and wiping everyone's data from the CEO down. Future computer science students will learn about the lessons of the Therac-25, the Ariane-5 rocket, and the Exchange/smart phone integration that brought a fortune-500 company to a standstill for a week.
  
  --
  "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
7. Re:we have the same policy at work by steppin_razor_LA · 2010-11-23 11:09 · Score: 3, Interesting
  
  My $.02 on policy:
  Employees should backup their own data. If they are uncomfortable with the possibility of Employer wiping their personal phone, then they should not connect their personal phone to work email.
  If an Employer *wants* its Employees to be reading their email from cell phones and the Employee doesn't feel like using their own personal property to do so, then the Employer needs to buy the Employee a work owned device or "STFU". If the Employee doesn't want to carry around two devices then they either need to submit to their phone being wiped or "STFU" and carry around both devices.
  
  --
  Evolution: love it or leave it
8. Re:we have the same policy at work by tlhIngan · 2010-11-23 11:12 · Score: 2, Insightful
  
  What do you do to protect your employees interests in not having their own data annihilated by accident?
  Also, are you expecting employees to take work with them, using their own devices; or is the company willing to bare the costs of either providing a device or the work not being done?
  It would seem most unusual to me for an employer to require their employees to provide expensive equipment for company use, and with the agreement that the company may treat it as its own.
  Simple - don't give company access to your personal phone.
  If the company wants you to have mobile email, they can pay for it themselves - after all, you're just as likely to not have a smartphone as to have one, so if the employer wants you to have one, they can provide it. I don't see why I should pay for a data plan on my phone that my employer can eat into. What - I went with a 100MB plan and you sent me 200MB of email? I'm not paying the extra $500 that usually costs.
  The usual reason why personal iPhones and such are being connected to company networks is simple - the employee wishes to have their email (or needs to have it) and doesn't want the company standard blackberry, or to carry two phones, or other reason. Of course, most companies balk at using personal equipment connected to the corporate networks, either. Still, if you have to have email, either take the company hardware and deal with that issue (better) or use your own hardware and deal with remote wipe (worse option). Most people prefer carrying around just their iPhone instead of iPhone+Blackberry, though.
9. Re:we have the same policy at work by Hatta · 2010-11-23 11:14 · Score: 2, Interesting
  
  We have the same policy and will only allow smart phones to connect to exchange when they have the remote wipe capability. It's to protect the company's interests should a phone be lost or stolen.
  Do you have the same policy for PCs?
  
  --
  Give me Classic Slashdot or give me death!
10. Re:we have the same policy at work by houghi · 2010-11-23 11:22 · Score: 5, Insightful
  
  I only give my personal phone to selected people in my company. That would be my boss and with the explicit notice that it is a private number and should only be used in case of emergencies.
  If they want me to have a device to connect to their system, they should provide me with one. Just like I expect them to provide a desk and a chair to sit on. Then it is theirs and they can do with it as they please and at the end of employment, they will get it back.
  Their device, their rules. My device, my rules.
  
  --
  Don't fight for your country, if your country does not fight for you.
11. Re:we have the same policy at work by IshmaelDS · 2010-11-23 11:22 · Score: 5, Insightful
  
  That's a massive security breach, one I wouldn't allow on my network. You may want to check your corporate policies and make sure your still inline or you could be fired.
  
  --
  letting an idiot know they are an idiot is not a game... it's a responsibility. - by Kristopeit, M. D. (1892582)
12. Re:we have the same policy at work by md65536 · 2010-11-23 11:37 · Score: 2, Insightful
  
  It's to protect the company's interests should a phone be lost or stolen.
  I don't think that wiping the entire phone's data goes far enough to protect their interests. Every company should have the ability to remotely wipe your smartphone, and your home computer, and the computers of all family and friends within 6 degrees of separation. Also, they should be able to kill you, because your brain contains precious precious data, too. Really, they ought to be able to take off and nuke the entire site from orbit. It's the only way to be sure.
  Way too far is not enough, I say, when it comes to protecting a company's interests.
13. Re:we have the same policy at work by fishexe · 2010-11-23 11:40 · Score: 5, Insightful
  
  It's the company's data, not your personal data, and they have measures in place to protect it.
  No it's not. He was talking about them wiping all your personal data. "Measures in place" to protect company's data that also wipe your personal data are a bit creepy.
  
  --
  "I don't care about the Constitution!" --Bill O'Reilly, November 17, 2009
14. Re:we have the same policy at work by nitehawk214 · 2010-11-23 11:48 · Score: 2, Interesting
  
  Then don't connect your personal phone to the company network.
  This.
  Furthermore, there is no way in hell I am going to spend my own money on a phone for work purposes. If they want me to pretend to have email access anywhere, they can very well buy me a phone that I can leave locked up in my desk at work, then pretend the network wasn't available when they tried to get in touch with me.
  Wait, what were we talking about again?
  
  --
  I'm a good cook. I'm a fantastic eater. - Steven Brust
15. Re:we have the same policy at work by Actually,+I+do+RTFA · 2010-11-23 12:08 · Score: 2, Insightful
  
  If an Employer *wants* its Employees to be reading their email from cell phones and the Employee doesn't feel like using their own personal property to do so, then the Employer needs to buy the Employee a work owned device or "STFU". If the Employee doesn't want to carry around two devices then they either need to submit to their phone being wiped or "STFU" and carry around both devices.
  So you want me to have to carry around a second device because some dev is too lazy to isolate the e-mail stored on my phone from everything else?
  
  --
  Your ad here. Ask me how!
16. Re:we have the same policy at work by Dynedain · 2010-11-23 12:54 · Score: 2, Insightful
  
  I meant the protection is for the company's data. It's their data, and their protection. You don't like what their protection does to your phone and your data? Then don't hook up your phone to their systems.
  It's just like having a personal laptop. Would you bind your personal machine to the company's AD environment, giving them full administrative control? No? Then don't use your personal machine on their network. Use a company-provided machine, or a work-dedicated machine that you can write off on your tax return.
  
  --
  I'm out of my mind right now, but feel free to leave a message.....
17. Re:we have the same policy at work by fishexe · 2010-11-23 13:32 · Score: 4, Insightful
  
  It's just like having a personal laptop. Would you bind your personal machine to the company's AD environment, giving them full administrative control? No? Then don't use your personal machine on their network. Use a company-provided machine, or a work-dedicated machine that you can write off on your tax return.
  I use my personal machine at work every day. I connect via standard protocols like ssh and smb, and never give up admin control, nor would I ordinarily do so. If they explicitly asked me to, I would say no, buy me a company machine instead, but if they said, "hey, if you install this software you can connect to our email servers" I don't really think it would occur to me to go check if the ordinary behavior of that software gives them root on my box. That wouldn't even occur to me.
  
  --
  "I don't care about the Constitution!" --Bill O'Reilly, November 17, 2009
18. Re:we have the same policy at work by macshit · 2010-11-23 13:33 · Score: 3, Insightful
  
  Of course one reason such "massive security breaches" happen is that companies have stupidly draconian policies which make "normal" operation so annoying/dangerous that clueful employees bypass it as a matter of course.
  Yeah, they can threaten "you might be fired!", but threats are very rarely effective unless they coincide with common sense — which policies like "we can wipe whatever we want!" don't.
  I suppose the larger the company, the more likely they are to choose "draconian/bluster" over working with the employees to find an agreeable technical solution...
  
  --
  We live, as we dream -- alone....
19. Re:we have the same policy at work by PNutts · 2010-11-23 13:43 · Score: 3, Insightful
  
  I have the same thing here. I always inform staff that I can and will wipe their phones. At their request, and that they should inform me at once if they lose of have their phone stolen.
  My personal iphone is connected to a gmail account that I forward a copy of all my work email.
  That way I get work email, but it is still my account.
  I guess I'll pile on, too...
  Depending on where you live and what you do, HIPAA has some exciting new personal liability built right in at no extra charge! So when that claims processor blasts PHI out to the wrong e-mail list, you, sir, have just transferred and stored it in a manner that will have you in court by yourself. Just you in the "Little Old Lady Victim vs. Evil (your name here)" By this time your employment will be a distant memory and your former company has no obligation to defend you. Depending on the company's policies and compliance they will get dinged, but that is a cost of doing business and a separate process that has nothing to do with your personal liability. Have you planned financially for that scenario?
  /drama
20. Re:we have the same policy at work by mysidia · 2010-11-23 17:25 · Score: 2, Insightful
  
  I suppose it depends on the work environment, but we regularly deal with sensitive customer information (i.e. financials, SSNs, credit cards, etc) and this sort of information ends up in internal emails.
  Sending an e-mail containing someone's credit card details should be a criminal offense. Anyone who e-mailed SSNs internally should go to jail for doing so. Shoddy security practices by people in an organization in no way justify the destruction of someone else's property.
  E-mailing sensitive financial details of customers is an utterly reckless practice, and trying to "wipe a terminated employee's phone" doesn't address the security issue at all.
  Carrying around such sensitive information as CCs/financials on a mobile device without strong cryptography and basic security is at diametrical opposite to safeguarding corporate data. And frankly, the organization deserves what they get if they fail to prohibit the practice or fail to promptly terminate employees who adopt a practice of doing so.
  The simple fact is anything truly critical such as that should not be available on anyone's Blackberry, iPhone, or any device taken off of company property, aside from encrypted formats where the decryption keys are not available on the device without a secure authorization process.
21. Re:we have the same policy at work by RMH101 · 2010-11-23 20:59 · Score: 4, Insightful
  
  So if you want remote access to your corporate mail, you do it on a company-supplied device and accept they have full control. If you want the convenience of using your personal phone with their exchange server, you accept that this includes the remote wipe nuclear option. The company gets to choose the policies for securing its own data, you get to choose if you bring your personal device to the party or not. It only becomes a problem if a company does something dumb like mandates you use personal phones to connect to their exchange environment and in my experience this pretty much never happens: it's people who go "Oh cool, my iPhone does Exchange! " and connect it to their corporate network for convenience that'll be affected by this.
22. Re:we have the same policy at work by Rich0 · 2010-11-23 22:17 · Score: 2, Insightful
  
  My company doesn't require me to have a smartphone, to read my emails from home, to take my laptop home, to work on evenings or weekends, or to do anything that anybody here would object to.
  They also fire the few worst performers in every department just about every year.
  That means that EVERYBODY uses their personal phones for work, distributes their cell-phone numbers, reads emails from home, takes their laptops home, works on evenings and weekends, and does all kinds of stuff that everybody here would object to.
  Sure, it isn't "policy" but if you don't do it you just lose your job anyway.
  That means that I care about stuff like this.
  It isn't a big deal - when I get around to it I'll just use a patched email client that handshakes with the server and agrees to wipe my phone and do all that intrusive stuff that makes corporate happy, and then silently ignores any such requests. It will of course confirm that it is doing all of that stuff anytime the server asks it to.
  The only way the company is going to know if my phone is running the code that they think it is running is when they supply the phone - so the problem has an easy solution.
23. Re:we have the same policy at work by Rich0 · 2010-11-23 22:20 · Score: 2, Insightful
  
  It would seem most unusual to me for an employer to require their employees to provide expensive equipment for company use, and with the agreement that the company may treat it as its own.
  Why do you think the USA has such a high level of productivity? EVERYBODY expects their employees to do this stuff. Sure, it isn't written policy, but if you don't do it you "aren't competitive."
  Why would the employer pay for an employee to use a cell phone when they can just fire the slowest worker every year and pretty soon everybody is happily volunteering their personal phone numbers to keep their jobs?
Bad photoshop? by bigredradio · 2010-11-23 10:38 · Score: 3, Informative

Is it just me or does the iphone in the picture of the article look really small? Or the person has really large hands?

--
Flexible bare-metal recovery for Linux/UNIX
Nonsense by Anonymous Coward · 2010-11-23 10:40 · Score: 4, Interesting

Wiping someones personal data is a felony. I think it likely that the employer prosecute if the tables were turned. Hacking tools are illegal in some jusridictions, I think anything providing this level of unauthorised access would be illegal under German law. Guess they don't use exchange there?
Re:Hmmmmmm by causality · 2010-11-23 10:44 · Score: 4, Insightful

Is this meaning that the Mails were deleted on the server?
No, that wouldn't wipe a phone or raise questions about it being bricked if not for backups. Did you even read the summary?

This is more like the inverse or the equal-and-opposite of (previous?) MS e-mail clients that would automatically execute code from unknown sources as a "feature". Instead of an MS e-mail client it's an MS e-mail server, and instead of downloading and executing code automatically without asking the user to confirm it wipes the phone automatically without asking the user to confirm.

The solution is a simple one. If a company requires you to use a phone for business purposes that will be sending/receiving business e-mails and subject to remote wiping by that company, then that company needs to issue phones to their employees that may not be used for non-business purposes. Then there wouldn't be any problems with a company wiping a phone that is actually company property.

--
It is a miracle that curiosity survives formal education. - Einstein
The surprise is in the scope by RollingThunder · 2010-11-23 10:45 · Score: 5, Insightful

I don't think most folks are shocked at the remote wipe capability - they just expected that it would be confined to the exchange data only, not the MP3's, games, photos, etc.
If you don't want this happening... by rennerik · 2010-11-23 10:48 · Score: 4, Informative

... use IMAP. Connecting to Exchange via IMAP doesn't enable remote wipe, but still allows you to access your mail and get access to the GAL.

But honestly, if you're needing access to a company's Exchange server, there's no reason why the company can't enforce a security policy, like a PIN or password on your phone, or remote wipe capabilities. There may be sensitive data in your emails or in your contact list, that should not be accessed on a device which has no protection (or even weak protection like a PIN). It's in the best interest of the organization to be able to remotely-wipe a device connected to their Exchange server.

That being said, if you don't want to give the company access to do that to your phone, then don't connect to Exchange. If IMAP isn't enabled, then you have to take the tradeoff.
Re: Going to post as top level comment... but... by colinnwn · 2010-11-23 10:52 · Score: 4, Informative

Unless your company specifically forbids it, I'd use TouchDown for Android. I've set it up for my mom and it seemed to work ok. I couldn't get her tasks to sync, but I'm sure I could have figured it out with some more effort. The email came down fine. It isn't quite as chic as having everything integrated into the native apps on your phone, but the interface seemed serviceable enough, and it keeps more of a firewall between your work and personal life.

Many companies don't specifically check the client string. If they do, and you really want to, you can masquerade as an iPhone. It supports Exchange remote wipe (but only for the TouchDown data store), all your personal data on the phone will be unaffected. I have Prey on my phone to wipe my personal data in case it gets stolen.
Our university is even worse... by Rhywden · 2010-11-23 10:54 · Score: 4, Interesting

... they're using an Exchange-Server for all the students' email. Fun parts include: You're only able to install a Forwarding rule if you use the Internet Explorer (otherwise the button for rules is simply not there - something their FAQ omits.) SMTP does not work at all for some strange reason. I finally tried to configure my Android phone to use the Exchange account as an additional email account. That worked. However, whenever the screen went black to conserve power, I had to reenter my Exchange password to unlock the phone! With a nontrivial password containing special characters, numbers, small and big letters at a length of 10 characters, this became a serious pain in the ass. Normally, to unlock the phone I just have to swipe the on-screen button from right to left. Needless to say, I quickly removed the Exchange account. And it was only a month later that I actually got an answer from them regarding my problems. So, if our university of incompetent morons Exchange server means that they could erase my data, I won't touch their offering with a ten-feet pole. Fun fact: They're "offering" a user administration tool for all the dorms' routers based on PHP. This little "tool" does an include of remote PHP files based on the unsanitized GET request data. As a plus, this tool has to be run as root. Which means that any disgruntled dorm administrator could do a pretty powerful attack on nearly the whole dorm network infrastructure.
1. Re:Our university is even worse... by amicusNYCL · 2010-11-23 11:26 · Score: 2, Funny
  
  This little "tool" does an include of remote PHP files based on the unsanitized GET request data.
  I don't believe that for a second. ..could you provide a URL to back up your claim?
  
  --
  "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
Re:One More Reason... by bhcompy · 2010-11-23 11:02 · Score: 2, Insightful

By giving a corporation control over corporate property(virtual property in this case, but established property as far as the law is concerned)?

I think you'll need to hate pretty much every company in the world.
Re:One More Reason... by dasdrewid · 2010-11-23 11:05 · Score: 5, Insightful

http://en.wiktionary.org/wiki/spick-and-span
Also, from the wikipedia article on the product, someone did try boycotting it in 1999 (http://en.wikipedia.org/wiki/Spic_and_Span). I think that's stupid. "Spick and Span" was first recorded in the 16th century. "Spic" has only existed since early 1900s, wasn't documented until 1910, and even then was documented as "spiggoty" as a slur against Italians. I'd say it's pretty safe to say that when "Spic and Span" was created (1933 in Ohio), "spic" being a slur wasn't even on the radar for them.
I think the situation is similar to the word "niggardly" (http://en.wikipedia.org/wiki/Controversies_about_the_word_%22niggardly%22). People see something that, without any context (context like the spelling of the word or idiom...), could be conceived as racist. People take offense as something because of their own ignorance.
The problem is, you're not being color-blind. You're seeing color issues where there aren't any. You're trying to get people riled up at racism that isn't even there. You're not helping to stop racism, but you are helping to chill language and communication and encourage ignorance. You have, by trying to be on the right side of something, wound up on the wrong side of everything.
And there goes my karma...

--
No trespassing. Violators will be shot. Survivors will be shot again.
Re:Hmmmmmm by causality · 2010-11-23 12:05 · Score: 2, Insightful

The solution is a simple one. If a company requires you to use a phone for business purposes that will be sending/receiving business e-mails and subject to remote wiping by that company, then that company needs to issue phones to their employees that may not be used for non-business purposes.
Why require they be used strictly for business? If the user is willing to take the risk of losing it all, then let them. One less low-value rule to worry about enforcing.
In most companies, it is expected that equipment bought and paid for by the company is to be used only for business purposes. This is standard practice with company computers, landline phones, etc. Not to mention it's rather unprofessional to conduct your personal business while you're on the clock and certainly a sign of poor time management.

Also, I support the notion of private property when I retain the right to eject an unwanted person from my home. I likewise support the notion of private property when a company that lends you a phone and pays all the costs of that phone gets to tell you how you may use that phone.

Now the requirement that company-paid phones should only be used for business might be backed up by potential disciplinary action. Or it might be backed up by "our company data has been secured; don't cry to us if you put something else on there and now it's gone". Either way is alright by me, and which one it is would be up to the company and employees to work out.

--
It is a miracle that curiosity survives formal education. - Einstein
Since we're trolling by mark72005 · 2010-11-23 12:32 · Score: 2, Funny

In Soviet Russia, phone wipes you!
What about laptops? by lullabud · 2010-11-23 13:10 · Score: 2, Interesting

What's so special about a phone that they get extra special wipe privileges? Can an Exchange admin remote-wipe my laptop if I have it hooked up to my corporate account?
No.
Why my phone then?
Well if it is security setting for Exchange Server by TavisJohn · 2010-11-23 16:19 · Score: 2, Insightful

Then the simple solution is to not use your personal phone to check your business e-mail. If my employer wants me to check my e-mail when I am out and about, then they can provide me with the equipment to do so. Otherwise I will not use my personal phone to check my business e-mail.