Google on Wednesday is starting a new pilot program where some employees will be restricted to internet-free desktop PCs, CNBC has learned.
The company originally selected more than 2,500 employees to participate, but after receiving feedback, the company revised the pilot to allow employees to opt out, as well as opening it up to volunteers. The company will disable internet access on the select desktops, with the exception of internal web-based tools and Google-owned websites like Google Drive and Gmail. Some workers who need the internet to do their job will get exceptions, the company stated in materials.
In addition, some employees will have no root access, meaning they won’t be able to run administrative commands or do things like install software.
Google is running the program to reduce the risk of cyberattacks, according to internal materials. “Googlers are frequent targets of attacks,” one internal description viewed by CNBC stated. If a Google employee’s device is compromised, the attackers may have access to user data and infrastructure code, which could result in a major incident and undermine user trust, the description added.
Turning off most internet access ensures attackers cannot easily run arbitrary code remotely or grab data, the description explained.
The program comes as companies face increasingly sophisticated cyberattacks. Last week, Microsoft said Chinese intelligence hacked into company email accounts belonging to two dozen government agencies, including the State Department, in the U.S. and Western Europe in a “significant” breach. Google has been pursuing U.S. government contracts since launching a public sector division last year.
It also comes as Google, which is preparing a companywide rollout of various artificial intelligence tools, tries to boost its security. The company has also in recent months been striving harder to contain leaks.
“Ensuring the safety of our products and users is one of our top priorities,” a Google spokesperson said in an emailed statement. “We routinely explore ways to strengthen our internal systems against malicious attacks.”
Read the full article here