ULPT: is my computer screen being mirrored
Posted by Pretty-Net-4551@reddit | UnethicalLifeProTips | View on Reddit | 94 comments
Hey guys, here to know your input on this: I have a coworker with whom I’ve been having some personal problems with. Thing is, I’m using his old work computer, and through his reactions and questions it seems like he could be aware of what I’m doing on my computer. I’m especially worried about the fact that ive been using WhatsApp on the browser and just now realizing that if he is somehow invisibly mirroring my screen that could get me in serious trouble. Is that even possible? And how could i detect it?
mmmmmarty@reddit
No personal anything on your work machine. Tighten up your OPSEC.
HitDerem2115@reddit
lol that’s not what opsec is
mmmmmarty@reddit
It's not what YOU think OPSEC is.
Placing personal information on someone else's machine is the most basic of Operation Security failures.
HitDerem2115@reddit
Friend, no. security of the OPERATION is OPSEC. So, when you are military (or in anything with a defined missed you are a part of) and you don't post your name, location, identifying information - that is OPSEC as you are a part of the mission. When you are not in the military, sharing identifying information is just careless, not an OPSEC issue. It's okay to be wrong, don't get so triggered.
mmmmmarty@reddit
Oh honey. This is personal OPSEC. Has nothing to do with any military.
You should be doing it every day.
HitDerem2115@reddit
I’m in the military. It’s where the term comes from. I know more about this than you do. Stay in your lane, “honey”.
mmmmmarty@reddit
I can tell.
mmmmmarty@reddit
You should maybe give OPSEC a Google. It's really worthwhile.
90210piece@reddit
Last job I was able to log into the local router and see what was displayed on my staff’s computers at any given time.
jamnoNewEpoch@reddit
No. You can't see other screens just by doing that.
SMELL_LIKE_A_TROLL@reddit
He obviously means the browser logs
cagdas@reddit
He was obviously hacking into the mainframe.
90210piece@reddit
Yes I could. The mercari box allowed it. I am not technical but they were in Ghana and I was in the US. I used it to troubleshoot issues with access to the vpn or the network where I needed over-the-shoulder views of what they were doing.
SMELL_LIKE_A_TROLL@reddit
I've worked at a company that left all the routers and access points with the default password. I've also worked places where server password was literally the street number and name. Think "1234substreet" for a place that made subs your way. A lot of retail locations use easily cracked combination locks that are programmed to the business street number. I even worked in a drug manufacturing facility years ago before rfid passes were coming - and no shit the back door combination was never changed from the FACTORY DEFAULT.
Stupidity is rampant.
90210piece@reddit
It truly is. Excellent point.
redthump@reddit
In order to find out if someone is mirroring your computer, set up a zoom meeting with your phone. Make sure the cameras and audio are on for both devices. Use your phone and it's magnification to take extremely close inspection video of your asshole and use the camera from your laptop to record your facial expressions and reactions during the process. Do this for like 15 minutes. Give the other person a chance to see it. Then go look around for the person who's really fucking awkward and doesn't want to make eye contact with you. That's your guy.
SMELL_LIKE_A_TROLL@reddit
Wouldn't it be easier for him to just fap on screen to picture of the suspect?
redthump@reddit
By this point, I'm sure he's already seen op jacking it. I mean, if he's been using his work laptop as his personal, it's kind of a given. But exploring the black hole, that will be fresh in new.
zefy_zef@reddit
I think this would be a bit of a self-own.. the other dude ain't gonna know he's jackin' it..
Davidat0r@reddit
THIS!!!
tickintimedog@reddit
Don’t think this is the right sub for this. We are the type to do the mirroring
writinglegit2@reddit
"WE ARE THE ONES WHO MIRROR"
Jdawarrior@reddit
SAY MY NAME
_steve_rogers_@reddit
Who mirrors the mirrorers?
FormidableMistress@reddit
We are the flesh pedestrians.
jols0543@reddit
that’s exactly what makes this the right place to ask
vonhoother@reddit
Don't give up so easily. I would suggest to OP that they engage in WhatsApp convos that will trigger one of the coworker's vices. Is he avaricious? Start trading hot stock tips, or send a string of messages suggesting a Ponzi scheme. Jealous? That one I don't have to explain.
If weeks go by without some weird reaction from coworker, either there's no mirroring going on or he's a cooler mark than most.
Commercial_Soup2126@reddit
How can I do this?
Extension_Wheel5335@reddit
With the Magic Screen Mirror software, compatible with Windows 69.
Commercial_Soup2126@reddit
😂
Brattney985@reddit
Hehe. Nice
Bingo-Bongo-Boingo@reddit
IT guy here. He probably isn’t watching your screen. It’s possible he is, but unless your job is full of people who don’t do anything all day, I’d doubt he would be watching your screen.
However, if you have a work computer, you have someone who can see your activity. It’s not hard to find and really easy to track. Don’t do personal stuff on a work device. Thats not what it’s there for, and that’s also not what you are there for
noydbshield@reddit
Fellow IT guy here. Is yours not? Not in your department, mind you, but do you ever get that ticket from someone mentioning how their VPN hasn't been working for 2 weeks and just go "WHAT THE FUCK DO YOU DO ALL DAY?!?!"
Bingo-Bongo-Boingo@reddit
The amount of times people joke about extending a call because they don’t wanna work is a little funny. I get it and would gladly do so if my calls weren’t also occasionally graded
TNTarantula@reddit
ULPT is the last of all places I expected to see criticism on not being a good little employee 🤣
Anagoth9@reddit
It's less about being a good employee and more a warning that you have zero privacy and zero expectation of privacy on work devices. IT can absolutely see what's on your screen in real time at any point without you ever being made aware. All of your activity, especially your browser history, is logged.
lewkir@reddit
I work in IT and we definitely can't see what you're doing at any time. Maybe a particularly distrustful and voyeuristic work culture would install such software but I don't think this is the norm.
Bingo-Bongo-Boingo@reddit
It’s never surveillance for us but more of just for troubleshooting. Idk if I could see the exact screens without the user knowing but I know their history and activities are logged well enough to where they should be careful about what they do on their machine
uwfan893@reddit
Routinely?? Why?
I’ve seen lots of IT people on Reddit saying “We can see what do you and as long as it isn’t illegal we usually won’t say shit because we’re busy enough already”.
Rezenbekk@reddit
maybe that ULPT can convince you: if you're IT, check all the computers for useful blackmail material
ADHDeez_Nutz420@reddit
Its because anyone who works in IT will say the same thing. Sure its ethical but its still a pro tip. Chances are we will find out what your doing as most activities are logged company side.
VileStuxnet@reddit
If you have access to the task manager, I would suggest checking it and looking for odd processes if you are on Windows. If Linux or Apple, it's easy to run top.
If you have windows access to cmd, you can use netstat -a or netstat -b (for ports)
Linux and Mac's have similar commands on the terminal. Windows has programs you can install, but you have to have the permissions for that.
I'd recommend not using the string to get to God mode with a file. It may bypass some security settings with a string, but if the IT is decent, they will detect it quickly, and you won't have a job.
schaudhery@reddit
Hand your laptop to your IT staff and ask them to wipe it and reimage it.
hattz@reddit
If it's a windows box you literally type in, 'factory reset' and it blows itself away and reinstalls windows.
Anyone using a bios level rootkit is going to smile, but if your personal threat model doesn't involve nation state actors going after your shit, no one is going to waste the time and potential loss of a really expensive chained vulnerability to 'mirror' your screen.
x_lincoln_x@reddit
Good way to piss off the IT department. Best to let them do it.
hattz@reddit
I mean... I guess they have to justify their existence somehow.
Going to sign back in with corp account and get added back to aad ... So going to get the same policies applied as when they did it. (Assuming the admins did gpo correctly).
x_lincoln_x@reddit
Low view of IT? Are you in HR or Sales?
hattz@reddit
Was a sys admin.
Deadpool2715@reddit
You realize wiping the device through windows GUI requires local admin, so you're probably a shitty sysadmin if you expect all users to have local admin on their machine like it's the wild west out there
foonek@reddit
I've worked for a company once that didn't allow local admin for developers. I didn't work there very long. That was absolute hell
Deadpool2715@reddit
Developers and power users can be a difficult line, I worked with our Cyber security team to give them admin accounts for just dedicated admin on their machines and then through GPO locked those admin accounts out of many system directories (no Regedit, no direct CMD/Powershell as admin access, no changing network settings, etc)
So they could install their needed apps and do a lot of local admin tasks, without risking compromising the organizations security
At the end of the day I'd trust any competent staff with admin to use it correctly, the mitigations are more to avoid the risks of honest mistakes like falling for a phishing email
SMELL_LIKE_A_TROLL@reddit
Presumptuous of you to assume you software isn't installed by it/the company. It or manager could easily be feeding the coworker info.
domdymond@reddit
I would also ask that they rename it even if they only add a number to the name.
Hamsternoir@reddit
As long as you don't have a car that won't accidentally knock over a coffee next to the laptop there's nothing much you can do.
Apprehensive_Hat8986@reddit
::dewunking::
Electrical_Camel3953@reddit
If he is monitoring you then he could be fired. But you have to prove it and if you just tell someone, the coworker will delete the software and there will be no evidence.
Do fake things on your screen which will cause him to either screenshot your screen or just report you or start some rumors.
That will be the evidence you need to prove he is monitoring your screen.
BillfredL@reddit
I work in IT. How you'd detect it depends on what software was involved, but on a work device you should absolutely assume it's there.
LL8844773@reddit
Why would you use WhatsApp on a work computer?
hattz@reddit
Don't do personal shit on a work computer.
End of statement.
CreepyMosquitoEater@reddit
Ive been gambling daily on my work computer for 2 years and heard nothing about it lmao
Elitist_Phoenix@reddit
Why use anything Facebook in general...
KlutzyAd5626@reddit
It boggles my mind how often people flippantly use their work computer for personal shit.
My old coworker said “I guess I would have to buy a laptop if I left this place since I do everything on this one”.
She said this after I mentioned something on FB that I wanted to send her but would have to wait until I was on my personal laptop.
We are both in HR.
Extension_Wheel5335@reddit
So I shouldn't be streaming my OnlyFans from my work laptop? Damn, I wish I had known. It's just so convenient to throw my butthole out there to my subscribers from my work desk you know?
KlutzyAd5626@reddit
I mean technically this would be better suited in r/overemployment. They will help make sure you keep your ass covered, figuratively, obviously.
Melodic-Ad1415@reddit
Screen name? 😂
matt88@reddit
Probably uses the company provided email address for everything too
KlutzyAd5626@reddit
When my company email accidentally ended up connected to my Apple Pay I scrambled so fast to fix it 😂
TheRushConcush@reddit
This is the correct answer
Scragglymonk@reddit
My company insists on WhatsApp for group chats, no chance that am using my personal account on work chat
Thomah1337@reddit
Whatsapp app?
chaoticfox244@reddit
Right like if it's something I'm using for work I'm gonna treat it like it can be searched at the drop of a hat. Ain't doing nothing that's gonna get me in trouble.
Swi_10081@reddit
Can one sign out of all devices with WhatsApp logins through the app?
HungryHippopatamus@reddit
Save your files and have your IT replace it or factory reset it
jols0543@reddit
i think it’s more likely that he’s looking over your shoulder to see your screen
Professional_Song483@reddit
Device manager would show a screen mirroring device, even software would show as a device there.
That being said you're for sure dumb because IT is certainly watching what you're doing and can easily setup flags to indicate when you're on WhatsApp
Syman44@reddit
Watch gay *orn on that device , and start being over friendly with him you know being all touchy like that and watch his reaction . You will definitely know your answer.
Outspoken_Idiot@reddit
incredirocks@reddit
If you're on Windows go to Task Manager -> performance -> ethernet. Typically, if someone is mirroring your screen you will see large amounts of data sent when your screen is changing (if it's a static image it won't send much).
Nitrous_Acidhead@reddit
Time for some meatspin
Deny-Degrade-Disrupt@reddit
You spin me right round baby right round
Like a record baby
noydbshield@reddit
Like a pecker baby right round pound town.
Benzophiliac@reddit
No love for Lemonparty?
DarkMatrix445@reddit
I'm personally more fond of tub girl for that extra shock factor
PennyG@reddit
Why in the goddamn shit would you do this?
kevinh456@reddit
Pro-tip: DO NOT DO ANYTHING ON YOUR WORK COMPUTER THAT YOU DONT WANT IT TO SEE
SMELL_LIKE_A_TROLL@reddit
Back in the days of AOL instant Messenger there was a software monitoring tool that let you see username, contacts, and all messages sent from any computer running AOL Messenger, without any credentials. People were born away companies could read their stuff. Well, dont be, its right there in the empires strategic handbook.
Rant_Page@reddit
Do a full on factory reset on the laptop even if there was anything it wont be there once you reset
SMELL_LIKE_A_TROLL@reddit
Ulpt: if you smash the computer they won't be able to spy on you.
Elpt: never be stupid enough to log into any personal account or do anything personal in a work computer. Use your phone or wait until you get home. there are plenty of spy software packages such as the almost 30 year old Spector that take screenshots near continuously. Some company's even install a type of vnc and watch your desktop over the lan continuously.
Opinion: if the manager is following elpt and watching your screen then t's very possible he is feeding your coworker info.
realdappermuis@reddit
I would suggest checking task manager to see what's all running, and kill whatever you don't recognize, or ask IT about it..
Would be good to stop doing stuff they can hold against you, eg looking at other jobs or whatever. Be best to use your phone on mobile data if you need to do it during work hours
Skeggy-@reddit
Always reformat used equipment. Reinstall windows.
ChefArtorias@reddit
Post this on a tech sub
Yiotiv@reddit
Piss disk in the DVD Drive
onmy40@reddit
You were setting up dates with hookers on WhatsApp werent you?
LowVoltCharlie@reddit
You didn't do a full reset when he gave it to you?