makbo wrote:
re: keyloggers. What did you find the employees doing? Surfing the web for personal purposes on company time? Would an on-screen keyboard evade the keylogger? (IOW, never type on the physical keyboard, only use mouse/touchpad clicks).
Yes, TPMs are enabled in BIOS. This is a reason it is wise to password protect your BIOS.
As to what I found, employees claiming they were not using someone else's credentials (although that was also available through other means), sending inappropriate messages to other employees (at one time, we had a messaging system that did not retain a log--I quickly changed that after this issue, and then they just used the messaging platform less and had nasty conversations verbally where it could not be heard), planning a wedding when they claimed they were working (yet behind on their work), etc. So glad be out of that hell.
Some degree of protection against keystroke loggers can be provided by touchscreen keyboards. Some can track mouse movement and clicks and even record screen, so it really depends on the software installed. The software I used included not only keystroke logger but screenshots/recordings, live viewing of monitors, website tracking with screenshots, etc., so none of the standard bypasses worked.