You can only catch so much at the edge and DNS level. Browser extension catches the stragglers that get through. But we’ve mitigated virtually all browser induced malware possibilities by just moving to cloud-based internet isolation. It’s similar to what the DoD uses, if anyone’s familiar with their use case: https://www.bylight.com/wp-content/uploads/2020/09/CBII_2020-2025.pdf
I’m not always working in the office, and they’ve asked us to connect to VPN only if we need access to the internal network. Email and Teams work without VPN, but now you want me to log in for web access? A browser blocker is better imo.
My IT department uninstalled it from my work laptop, and told me not to reinstall it because - and I quote: “The only browser IT officially supports is Google Chrome.”
What makes this doubly stupid is that I’m a web developer. I literally can’t test my stuff on another browser…
I used to develop ads (non intrusive things for home depot or go RVing) and i used ad blockers. When testing, i would just run private browsing with plugins disabled…
Same here. The worst thing is in their justification of disallowing Firefox they listed that it was not an enterprise application. I get that it might be extra effort to support it but don’t list something factually untrue as a lame cop out for why you don’t want to.
Was told it wouldn’t be allowed because you couldn’t restrict it using GPO… Until I told them they could absolutely apply those restrictions using GPO and even provided the ADMX templates.
Tell your IT.
Yeah. What company wouldn’t allow it?
When I was working for an ad exchange, everyone had adblock installed in their browsers, I found that quite ironic.
I would argue it’s a security issue not to have any ad blocking. Many scams online start with popups or fake ads.
So if you get the opportunity to talk to IT that’s what I would mention.
A good IT is blocking ads at a company-level. Browser extensions wouldn’t matter, and in fact, shouldn’t be allowed for the same reason.
You can only catch so much at the edge and DNS level. Browser extension catches the stragglers that get through. But we’ve mitigated virtually all browser induced malware possibilities by just moving to cloud-based internet isolation. It’s similar to what the DoD uses, if anyone’s familiar with their use case: https://www.bylight.com/wp-content/uploads/2020/09/CBII_2020-2025.pdf
Even with CBII ads still make the internet cancerous to even look at
Oh for sure, but with CBII, malicious ads can’t exploit a vulnerability and infect your local system.
I’m not always working in the office, and they’ve asked us to connect to VPN only if we need access to the internal network. Email and Teams work without VPN, but now you want me to log in for web access? A browser blocker is better imo.
The FBI agrees with you
(Although they have since taken down their PSA woth no explanation)
My IT department uninstalled it from my work laptop, and told me not to reinstall it because - and I quote: “The only browser IT officially supports is Google Chrome.”
What makes this doubly stupid is that I’m a web developer. I literally can’t test my stuff on another browser…
I used to develop ads (non intrusive things for home depot or go RVing) and i used ad blockers. When testing, i would just run private browsing with plugins disabled…
Officially only Edge is supported, but Chrome is tolerated. It’s a full MS environment.
Same here. The worst thing is in their justification of disallowing Firefox they listed that it was not an enterprise application. I get that it might be extra effort to support it but don’t list something factually untrue as a lame cop out for why you don’t want to.
Was told it wouldn’t be allowed because you couldn’t restrict it using GPO… Until I told them they could absolutely apply those restrictions using GPO and even provided the ADMX templates.
My condoleances