[mc32]

I don't think big companies allow employees to have the crown jewels on their co issued devices. They would have to remote into something even they don't have physical security access into.

[TeMPOraL]

> They would have to remote into something even they don't have physical security access into.

Which they do from their... "co issued devices". And in the days of keys over passwords being standard practice (but 2FA not yet), pwning a worker's device can be very useful even if all the real targets are on remote servers.

[mc32]

I'd be surprised if any of the big tech cos have not deployed U2F.

[chronid]

You'd be surprised by the number of those USB keys permanently attached to laptops/desktops or left on desks in the offices of the big tech cos. :)

[lazyasciiart]

What are 'the crown jewels', in your opinion? Surely (some) source code counts?