[paganel]

For what it’s worth, I’ve heard that when the current war in Ukraine started the Moscow/Russian employees of a big US networking hardware company of which everyone on this forum has heard about had their access cut off instantly, as in the invasion started at around 2AM and when the employees tried to get to work that morning they found out they could no longer access the company’s resources.

Which tells me that that company’s HQ had already put a sort of kill switch in place for cases like this.

[ciceryadam]

2 AM Moscow time is 3 PM Pacific time - if they had someone working west coast times it could be done in regular working hours. Dropping users from their VPN LDAP group (or directly from the VPN servers) doesn't take long.

[kornhole]

I know of another SW company that did the same thing. Everybody at the company was then told not to contact or communicate with any of the employees in Russia. Then one of the executives told everybody that it was a vendor who was providing the remote access solution who pulled out of the country in a blame shift we saw right through.

[jollybean]

For sure. Critical technology companies for sure have these kinds of plans and things ready.

And these big brand companies with international offices are full of spies it's good cover.