Hold up… You thought maybe you downloaded malware (which in this case that was not the only cause) so you took it upon yourself to reinstall windows on a company issued laptop?
Why are you trying to fix it? Submit It ticket and it’s their problem.
If you suspect malware alert it security immediately. Many malware act as a gateway to lock other systems. Yes you might get in trouble but I’d rather be yelled at for downloading something then yelled at for infecting my company servers will ransomware/malware.
Atleast in my company a computer connecting without a company supplied image of windows will be denied. Completely understand you not connecting to the internet.
This problem was not caused by you but could of been… Take this as a lesson to be more proactive in the future.
Doesn’t make a ticket or notify anyone that there is a problem and then proceeds to try and fix it themselves incorrectly.
When it does become a ticket, they won’t remember exactly what steps they took to troubleshoot and will waste 5x as much time from support staff trying to fix it than if they just didn’t touch it in the first place.
Guaranteed didn’t wipe the machine from the built in reset/recovery screen and instead used a windows installer that was created on a different computer and doesn’t have the correct network drivers in the image.
They might have a BYOD policy at work where they remote into an azure desktop or something and then reinstalled Windows on their physical device. Who knows. But yeah, they still should have notified their security personnel at the very least before taking any further action, lol.
Yeah #2 is a big one. I’ve had to deal with a user who got hit by a supply chain attack, and doing forensics on their box was invaluable.
If they’d wiped their desktop as soon as it got compromised, we’d have nothing to go off of. I’d expect that user to be in some pretty serious trouble tbh for violating our security policy by not notifying us immediately.
Hold up… You thought maybe you downloaded malware (which in this case that was not the only cause) so you took it upon yourself to reinstall windows on a company issued laptop?
Why are you trying to fix it? Submit It ticket and it’s their problem.
If you suspect malware alert it security immediately. Many malware act as a gateway to lock other systems. Yes you might get in trouble but I’d rather be yelled at for downloading something then yelled at for infecting my company servers will ransomware/malware.
Atleast in my company a computer connecting without a company supplied image of windows will be denied. Completely understand you not connecting to the internet.
This problem was not caused by you but could of been… Take this as a lesson to be more proactive in the future.
Could have. Have.
You missed a then/than as well
Or just “could’ve”
This is actually the worst type of end-user.
Doesn’t make a ticket or notify anyone that there is a problem and then proceeds to try and fix it themselves incorrectly. When it does become a ticket, they won’t remember exactly what steps they took to troubleshoot and will waste 5x as much time from support staff trying to fix it than if they just didn’t touch it in the first place.
Guaranteed didn’t wipe the machine from the built in reset/recovery screen and instead used a windows installer that was created on a different computer and doesn’t have the correct network drivers in the image.
They might have a BYOD policy at work where they remote into an azure desktop or something and then reinstalled Windows on their physical device. Who knows. But yeah, they still should have notified their security personnel at the very least before taking any further action, lol.
Yeah #2 is a big one. I’ve had to deal with a user who got hit by a supply chain attack, and doing forensics on their box was invaluable.
If they’d wiped their desktop as soon as it got compromised, we’d have nothing to go off of. I’d expect that user to be in some pretty serious trouble tbh for violating our security policy by not notifying us immediately.