185

My mom got audited for storing sensitive client information in her gmail account without using a vpn or any other real security.

I had been telling her this was an issue for literally the last three years and shes brushed me off every time.

I got yelled at for not telling her I was serious.

Comments
  • 44
    her own fault
  • 23
    Sounds like a typical client/manager/user.
  • 42
    Flashback to a conversation 2 years ago: "MOM! I am SERIOUS about this! This is a serious issue! SERIOUSLY, listen to me!"

    Reaction today: "Well, you didn't tell me you were serious about being serious about it."
  • 8
    @Alice I hate those kinds of bullshit
  • 13
    If you ever need anyone to back you off, tell me. Your mother might don't belive you, cause you're her daughter. She might belive some randome dude from the internet. So if you ever need someone to back you up, let me know.
  • 20
    How would a VPN helped in this case?
  • 4
    LOL what next? Prove me you are serious being serious?
  • 1
    @norman70688 yes. That's exactly what...
  • 0
    Fuckin hate that shit to no extent.
  • 1
    @Bubbles Guess you don't really hate it then πŸ˜…
  • 1
    @Root I hate it so much I don’t hate it I relate to that feeling too much
  • 5
    @Bubbles Me, too. I've been ignored and not taken seriously my entire life.
  • 1
    @Root fuck I relate to that as well
  • 1
    @Root I know how that feels
  • 2
    Is https now considered unsafe?
  • 3
    @TheCommoner282 No, but what doesn't protect data at rest, _especially when they lay at an external company_ (in this case Google).
  • 3
    @sbiewald she said without a VPN or any real security. If a VPN is improving the situation then we're not talking about resting data. By the way, took me a moment to understand what you're meant with rest. My first reaction was to say: rest api can also have https :)
  • 6
    @TheCommoner282 Her company requires vpn use in their service contract thing with clients. So its more the fact that she broke her own internal business function policies.
    I should have clarified.
  • 2
    @meowijuanas So this is 'just' a policy violation, but no 'real' insecurities (besides storing data at Google at all, or was that allowed)?
  • 3
    @sbiewald No, there were many security violations. I was trying to clarify that the vpn itself was an issue because of company policy.
  • 5
    Many companies use Google Apps for everything. Uber for example, until they got into legal fights about self driving tech — even though Google claimed they never access the mailboxes.
  • 2
    @meowijuanas Thank you for clarification.
  • 2
    @meowijuanas makes sense now. Thanks
  • 0
    @bittersweet Really? That's troubling
  • 2
    @Root Well there's no sign Google abused their position as host, and there were plenty of signs Uber was stealing from Google.

    But with Google/Amazon being such large conglomerates, I do think it's a factor to consider when you choose them to provide the tools to run your company.

    Same goes for tools like Slack, Dropbox, conversion APIs, etc, you do pretty much give strangers around the world full access to all your information.
  • 2
    @bittersweet Growing up having no privacy at all made me extremely wary of that.
  • 1
    @Alice "that's exactly what..." she said. Here you are. The type of joke everyone needed😁
  • 1
    Was it her own personal Gmail account? If so that falls some on the company for not providing the right tools. Unless they did and she didn't use them. Personally I push most companies to use protonmail.
  • 0
    @icycrash yes. She used 3 different gmail accounts. Not the company's fault because she's the owner lmao. I have been using protonmail for 2 years and have recommended it to her and her clients at least 30 times, especially because she repeatedly asks me how to encrypt email. I have no clue why she was so fucking stubborn about switching, but i bet she wish she did now.
  • 1
    @meowijuanas protonmail is relatively cheap so it would be perfect. Hopefully she listens to you now.
  • 0
    @meowijuanas out of curiosity what field is her business in?
  • 0
    @icycrash she still probably wont lmao. I dont know, shes just a very frustrating person. Yesterday when i went to visit her and my gramma, it didnt seem like she had done anything in response to the audit. Shes probably thinking it's no big deal and that she can keep getting away with it. Itll be a damn rude awakening when thats not the case
  • 0
    @meowijuanas Depending what she does she may get fined.
  • 3
    @icycrash sorry, I didnt see your question. Its financial consultation. So she takes care of taxes, finding loans for people, debt consolidation plans, etc. So yes, she will absolutely be fined. I believe she has already been fined $2500.
    She truly does not get the seriousness of the situation.

    This is the same woman who thought she had a sticky note on her desk somewhere with my social security num on it, without realizing that i had shredded it 2 years ago.
  • 1
    @meowijuanas $2500 isn't too bad for a fine especially what the fine was for.
  • 0
    Talking about stupidity, my friend on whatsapp even share his bank online transaction on his stories, I told him to be careful with those sensitive information, but he's ignoring it.
    I think he more care to show off his "bulge-wallet" than protect his own money.
    Find anything stupid than that?
  • 1
    @K4YZ there's nothing stupid about that as long as you reshare it here.
  • 0
    @icycrash hahahahaaa. Next time he doing it, will share it here. Let him feel deterrent for his behavior πŸ˜‚πŸ˜‚
  • 1
    @K4YZ Thats the right attitude. Lol
  • 0
    @icycrash hahaha.. well manered hooman, and that's kid how you be friend with one another πŸ˜‚
Your Job Suck?
Get a Better Job
Add Comment