We had our employer deploy Zscaler in our work laptops (we were using a VPN to access the network previously) and I wanted to know whether Zscaler track and share location data? (even if it is at a high level, e.g. in which country I am)
To be fair, if you connect to any service your employer controls, they’ll see your public IP, which can be geolocated to your general location. (barring use of a third party VPN service or something)
It’s best not to try and hide these things from your employer. Chances are you’ll slip up in some way and get caught.
Not only can it share your location with your employer, if they have DLP turned on aggressively they can literally capture every attachment you send over say, gmail, as well as every POST//PUT to a website containing keywords.
Zscaler will have logs which include client IP details. Would be able to review those for geoip country. Logs might include details of Zen node as well so if your client it hitting the node in a specific country it will log that. I am not in front of PC at the moment but I have been administering Zscaler for a number of years.
Assume they know everything going on with their equipment.
Had this happen but the guy didn’t tell us. Just found his logins were showing up as his home country and he would say he forgot to log out of his vpn he used to watch tv back home. So we started to do in person meetings. This was during the summer in DC and he would show up in a winter jacket and look like he just got off the plane. Ended up catching him in some lies and they let him go. Never would of thought this type of thing would happen but it is a different world since COVID.
?
1- that’s not the point and
2- why would I need to be only outsourcing my job if I want to knwo if my employer is tracking my location… Lol you lack of imagination friend…
Not only capture but also prevent it. My company is looking to help protect our IP by using these tools to prevent the use of any unauthorized source of file sharing.
How is this shady as fuck? It is shady as fuck if your employer is using a third party service to track your location. That breaches all sorts of privacy ethics. If someone hacks Zscalar and can find your name attached to a location… that is fucked.
I believe he originally and was turned down due to us having ties to federal services. But then decided to do it anyways. I almost wonder if he was working for multiple companies and had this in his mind when he got hired. Would take as long as possible to get his jobs done and would take hours to get back to you.
If by shady you mean that one I want to know what kind of information my employer is collecting on me, and two, whether I could work remotely overseas without them noticing, then yes happy to be shady.