How to deal with a colleague trying to steal my password?

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP





.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0;







up vote
14
down vote

favorite
1












Like Windows, Mac has a feature that allows users to remotely login to their system from another system. Yesterday, my coolleague asked me to remotely login to my Mac using his system. I did just that and went back to work.



A few seconds later, I saw his computer screen. He had keylogging software running on his system. He hid it immediately when he saw me looking. What should I do? How do I confront this guy?



I would have complained to senior management, but my problem is this guy is my biggest supporter in the company. Also, it's my first job, and it's been only 4 months since I joined this company. This guy could get me fired simply by saying that I am not productive or I am a bad employee or I don't perform so good. He is responsible for all my reviews.



The project manager and CEO both ask him whenever they wanna know about my performance. They have no other way to evaluate me, and it's a two man team. So I don't have any other members in my team.




management




share|improve this question


















  • 2




    Hello! I'm not 100% sure the question title matches what you describe as the problem? Is the team lead trying to steal your password, or is the company simply trying to monitor what you're doing on the computer while at work?
    – jmort253♦
    Mar 22 '13 at 5:29










  • Why would they monitor me?
    – anon
    Mar 22 '13 at 5:44






  • 11




    I got it now. The keylogging software was running on his computer... this does seem... odd... Did you change your password? Definitely be sure not to use the same passwords at work that you use for personal stuff.
    – jmort253♦
    Mar 22 '13 at 6:11







  • 2




    Are you 100% sure that it was even keylogging software? From the sounds of it you only got a brief glance at it if he hid it, is there no room for uncertainty about what it was?
    – Rhys
    Mar 22 '13 at 9:19






  • 3




    Not to read too far between the lines, but it sounds like there is a totally unrelated issue that makes you assume that a brief glance at a computer screen indicates keylogging from the one person who supports you. Strikes me as paranoid and/or an indication that you have separate issues in the workplace. Perhaps I'm wrong, but...
    – jmac
    Mar 22 '13 at 16:28
















up vote
14
down vote

favorite
1












Like Windows, Mac has a feature that allows users to remotely login to their system from another system. Yesterday, my coolleague asked me to remotely login to my Mac using his system. I did just that and went back to work.



A few seconds later, I saw his computer screen. He had keylogging software running on his system. He hid it immediately when he saw me looking. What should I do? How do I confront this guy?



I would have complained to senior management, but my problem is this guy is my biggest supporter in the company. Also, it's my first job, and it's been only 4 months since I joined this company. This guy could get me fired simply by saying that I am not productive or I am a bad employee or I don't perform so good. He is responsible for all my reviews.



The project manager and CEO both ask him whenever they wanna know about my performance. They have no other way to evaluate me, and it's a two man team. So I don't have any other members in my team.




management




share|improve this question


















  • 2




    Hello! I'm not 100% sure the question title matches what you describe as the problem? Is the team lead trying to steal your password, or is the company simply trying to monitor what you're doing on the computer while at work?
    – jmort253♦
    Mar 22 '13 at 5:29










  • Why would they monitor me?
    – anon
    Mar 22 '13 at 5:44






  • 11




    I got it now. The keylogging software was running on his computer... this does seem... odd... Did you change your password? Definitely be sure not to use the same passwords at work that you use for personal stuff.
    – jmort253♦
    Mar 22 '13 at 6:11







  • 2




    Are you 100% sure that it was even keylogging software? From the sounds of it you only got a brief glance at it if he hid it, is there no room for uncertainty about what it was?
    – Rhys
    Mar 22 '13 at 9:19






  • 3




    Not to read too far between the lines, but it sounds like there is a totally unrelated issue that makes you assume that a brief glance at a computer screen indicates keylogging from the one person who supports you. Strikes me as paranoid and/or an indication that you have separate issues in the workplace. Perhaps I'm wrong, but...
    – jmac
    Mar 22 '13 at 16:28












up vote
14
down vote

favorite
1









up vote
14
down vote

favorite
1






1





Like Windows, Mac has a feature that allows users to remotely login to their system from another system. Yesterday, my coolleague asked me to remotely login to my Mac using his system. I did just that and went back to work.



A few seconds later, I saw his computer screen. He had keylogging software running on his system. He hid it immediately when he saw me looking. What should I do? How do I confront this guy?



I would have complained to senior management, but my problem is this guy is my biggest supporter in the company. Also, it's my first job, and it's been only 4 months since I joined this company. This guy could get me fired simply by saying that I am not productive or I am a bad employee or I don't perform so good. He is responsible for all my reviews.



The project manager and CEO both ask him whenever they wanna know about my performance. They have no other way to evaluate me, and it's a two man team. So I don't have any other members in my team.




management




share|improve this question














Like Windows, Mac has a feature that allows users to remotely login to their system from another system. Yesterday, my coolleague asked me to remotely login to my Mac using his system. I did just that and went back to work.



A few seconds later, I saw his computer screen. He had keylogging software running on his system. He hid it immediately when he saw me looking. What should I do? How do I confront this guy?



I would have complained to senior management, but my problem is this guy is my biggest supporter in the company. Also, it's my first job, and it's been only 4 months since I joined this company. This guy could get me fired simply by saying that I am not productive or I am a bad employee or I don't perform so good. He is responsible for all my reviews.



The project manager and CEO both ask him whenever they wanna know about my performance. They have no other way to evaluate me, and it's a two man team. So I don't have any other members in my team.





management





share|improve this question













share|improve this question




share|improve this question








edited Mar 28 '13 at 5:05

























asked Mar 22 '13 at 4:53







anon














  • 2




    Hello! I'm not 100% sure the question title matches what you describe as the problem? Is the team lead trying to steal your password, or is the company simply trying to monitor what you're doing on the computer while at work?
    – jmort253♦
    Mar 22 '13 at 5:29










  • Why would they monitor me?
    – anon
    Mar 22 '13 at 5:44






  • 11




    I got it now. The keylogging software was running on his computer... this does seem... odd... Did you change your password? Definitely be sure not to use the same passwords at work that you use for personal stuff.
    – jmort253♦
    Mar 22 '13 at 6:11







  • 2




    Are you 100% sure that it was even keylogging software? From the sounds of it you only got a brief glance at it if he hid it, is there no room for uncertainty about what it was?
    – Rhys
    Mar 22 '13 at 9:19






  • 3




    Not to read too far between the lines, but it sounds like there is a totally unrelated issue that makes you assume that a brief glance at a computer screen indicates keylogging from the one person who supports you. Strikes me as paranoid and/or an indication that you have separate issues in the workplace. Perhaps I'm wrong, but...
    – jmac
    Mar 22 '13 at 16:28












  • 2




    Hello! I'm not 100% sure the question title matches what you describe as the problem? Is the team lead trying to steal your password, or is the company simply trying to monitor what you're doing on the computer while at work?
    – jmort253♦
    Mar 22 '13 at 5:29










  • Why would they monitor me?
    – anon
    Mar 22 '13 at 5:44






  • 11




    I got it now. The keylogging software was running on his computer... this does seem... odd... Did you change your password? Definitely be sure not to use the same passwords at work that you use for personal stuff.
    – jmort253♦
    Mar 22 '13 at 6:11







  • 2




    Are you 100% sure that it was even keylogging software? From the sounds of it you only got a brief glance at it if he hid it, is there no room for uncertainty about what it was?
    – Rhys
    Mar 22 '13 at 9:19






  • 3




    Not to read too far between the lines, but it sounds like there is a totally unrelated issue that makes you assume that a brief glance at a computer screen indicates keylogging from the one person who supports you. Strikes me as paranoid and/or an indication that you have separate issues in the workplace. Perhaps I'm wrong, but...
    – jmac
    Mar 22 '13 at 16:28







2




2




Hello! I'm not 100% sure the question title matches what you describe as the problem? Is the team lead trying to steal your password, or is the company simply trying to monitor what you're doing on the computer while at work?
– jmort253♦
Mar 22 '13 at 5:29




Hello! I'm not 100% sure the question title matches what you describe as the problem? Is the team lead trying to steal your password, or is the company simply trying to monitor what you're doing on the computer while at work?
– jmort253♦
Mar 22 '13 at 5:29












Why would they monitor me?
– anon
Mar 22 '13 at 5:44




Why would they monitor me?
– anon
Mar 22 '13 at 5:44




11




11




I got it now. The keylogging software was running on his computer... this does seem... odd... Did you change your password? Definitely be sure not to use the same passwords at work that you use for personal stuff.
– jmort253♦
Mar 22 '13 at 6:11





I got it now. The keylogging software was running on his computer... this does seem... odd... Did you change your password? Definitely be sure not to use the same passwords at work that you use for personal stuff.
– jmort253♦
Mar 22 '13 at 6:11





2




2




Are you 100% sure that it was even keylogging software? From the sounds of it you only got a brief glance at it if he hid it, is there no room for uncertainty about what it was?
– Rhys
Mar 22 '13 at 9:19




Are you 100% sure that it was even keylogging software? From the sounds of it you only got a brief glance at it if he hid it, is there no room for uncertainty about what it was?
– Rhys
Mar 22 '13 at 9:19




3




3




Not to read too far between the lines, but it sounds like there is a totally unrelated issue that makes you assume that a brief glance at a computer screen indicates keylogging from the one person who supports you. Strikes me as paranoid and/or an indication that you have separate issues in the workplace. Perhaps I'm wrong, but...
– jmac
Mar 22 '13 at 16:28




Not to read too far between the lines, but it sounds like there is a totally unrelated issue that makes you assume that a brief glance at a computer screen indicates keylogging from the one person who supports you. Strikes me as paranoid and/or an indication that you have separate issues in the workplace. Perhaps I'm wrong, but...
– jmac
Mar 22 '13 at 16:28










2 Answers
2






active

oldest

votes

















up vote
38
down vote













First things first, change your password.



Second, change every single password on every account that used the "exposed" one.



Lastly, don't confront him about it without hard evidence. There really is no point and all you end up with is lots of drama and very little gain.



Also, don't assume anything. Maybe he just discovered the keylogger himself and didn't want you to see it because it would have been hard to explain. Maybe it was installed for some other purpose and your password wasn't really the target.



In any case, you can never be 100% sure.



Just try to be careful and it if happens again, talk to him about it the second it takes place, not hours after the event. Once you let him get off with your "pretending not to notice", its very hard to channel the conversation that way again and you will have lost the best chance to get to the bottom of it.






share|improve this answer




















  • If you want to collect hard evidence, changing your password is the last thing you want to do!
    – Michael Zedeler
    Mar 23 '13 at 21:26






  • 17




    If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
    – huntmaster
    Mar 27 '13 at 13:55







  • 1




    @huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
    – Michael Kohne
    Mar 27 '13 at 19:02











  • Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
    – Michael Kohne
    Mar 27 '13 at 19:04










  • OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
    – jcm
    Sep 13 '14 at 11:52

















up vote
12
down vote













As mentioned already change all your passwords.



There should be no expectation of privacy on company resources. Although that may vary depending on what country/state you are in.



So the next thing to check is if this is authorised behaviour. So I would go to a senior manager (or security department if you have one) and explain the situation.



If it is authorised monitoring then you need to live with it. I doubt very much it is based on what you described, as they would just give him an admin account to your machine to monitor/review.



The main point is, if someone is liable to circumvent the security process to access resources under another users details, they are liable to do it to others as well (ie. your CEO/senior management). That should be the point you are getting across, not that you have an issue with the team lead directly.






share|improve this answer
















  • 3




    I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
    – jmac
    Mar 25 '13 at 7:35






  • 1




    Yea, wording it should always be non-confrontational.
    – Simon O'Doherty
    Mar 25 '13 at 7:40






  • 1




    It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
    – jmac
    Mar 25 '13 at 7:45






  • 2




    But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
    – Simon O'Doherty
    Mar 25 '13 at 8:37






  • 3




    What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
    – jmac
    Mar 25 '13 at 8:45










Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "423"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);








 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fworkplace.stackexchange.com%2fquestions%2f10501%2fhow-to-deal-with-a-colleague-trying-to-steal-my-password%23new-answer', 'question_page');

);

Post as a guest
















2 Answers
2






active

oldest

votes








2 Answers
2






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
38
down vote













First things first, change your password.



Second, change every single password on every account that used the "exposed" one.



Lastly, don't confront him about it without hard evidence. There really is no point and all you end up with is lots of drama and very little gain.



Also, don't assume anything. Maybe he just discovered the keylogger himself and didn't want you to see it because it would have been hard to explain. Maybe it was installed for some other purpose and your password wasn't really the target.



In any case, you can never be 100% sure.



Just try to be careful and it if happens again, talk to him about it the second it takes place, not hours after the event. Once you let him get off with your "pretending not to notice", its very hard to channel the conversation that way again and you will have lost the best chance to get to the bottom of it.






share|improve this answer




















  • If you want to collect hard evidence, changing your password is the last thing you want to do!
    – Michael Zedeler
    Mar 23 '13 at 21:26






  • 17




    If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
    – huntmaster
    Mar 27 '13 at 13:55







  • 1




    @huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
    – Michael Kohne
    Mar 27 '13 at 19:02











  • Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
    – Michael Kohne
    Mar 27 '13 at 19:04










  • OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
    – jcm
    Sep 13 '14 at 11:52














up vote
38
down vote













First things first, change your password.



Second, change every single password on every account that used the "exposed" one.



Lastly, don't confront him about it without hard evidence. There really is no point and all you end up with is lots of drama and very little gain.



Also, don't assume anything. Maybe he just discovered the keylogger himself and didn't want you to see it because it would have been hard to explain. Maybe it was installed for some other purpose and your password wasn't really the target.



In any case, you can never be 100% sure.



Just try to be careful and it if happens again, talk to him about it the second it takes place, not hours after the event. Once you let him get off with your "pretending not to notice", its very hard to channel the conversation that way again and you will have lost the best chance to get to the bottom of it.






share|improve this answer




















  • If you want to collect hard evidence, changing your password is the last thing you want to do!
    – Michael Zedeler
    Mar 23 '13 at 21:26






  • 17




    If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
    – huntmaster
    Mar 27 '13 at 13:55







  • 1




    @huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
    – Michael Kohne
    Mar 27 '13 at 19:02











  • Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
    – Michael Kohne
    Mar 27 '13 at 19:04










  • OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
    – jcm
    Sep 13 '14 at 11:52












up vote
38
down vote










up vote
38
down vote









First things first, change your password.



Second, change every single password on every account that used the "exposed" one.



Lastly, don't confront him about it without hard evidence. There really is no point and all you end up with is lots of drama and very little gain.



Also, don't assume anything. Maybe he just discovered the keylogger himself and didn't want you to see it because it would have been hard to explain. Maybe it was installed for some other purpose and your password wasn't really the target.



In any case, you can never be 100% sure.



Just try to be careful and it if happens again, talk to him about it the second it takes place, not hours after the event. Once you let him get off with your "pretending not to notice", its very hard to channel the conversation that way again and you will have lost the best chance to get to the bottom of it.






share|improve this answer












First things first, change your password.



Second, change every single password on every account that used the "exposed" one.



Lastly, don't confront him about it without hard evidence. There really is no point and all you end up with is lots of drama and very little gain.



Also, don't assume anything. Maybe he just discovered the keylogger himself and didn't want you to see it because it would have been hard to explain. Maybe it was installed for some other purpose and your password wasn't really the target.



In any case, you can never be 100% sure.



Just try to be careful and it if happens again, talk to him about it the second it takes place, not hours after the event. Once you let him get off with your "pretending not to notice", its very hard to channel the conversation that way again and you will have lost the best chance to get to the bottom of it.







share|improve this answer












share|improve this answer



share|improve this answer










answered Mar 22 '13 at 7:29









Permas

4,83111829




4,83111829











  • If you want to collect hard evidence, changing your password is the last thing you want to do!
    – Michael Zedeler
    Mar 23 '13 at 21:26






  • 17




    If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
    – huntmaster
    Mar 27 '13 at 13:55







  • 1




    @huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
    – Michael Kohne
    Mar 27 '13 at 19:02











  • Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
    – Michael Kohne
    Mar 27 '13 at 19:04










  • OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
    – jcm
    Sep 13 '14 at 11:52
















  • If you want to collect hard evidence, changing your password is the last thing you want to do!
    – Michael Zedeler
    Mar 23 '13 at 21:26






  • 17




    If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
    – huntmaster
    Mar 27 '13 at 13:55







  • 1




    @huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
    – Michael Kohne
    Mar 27 '13 at 19:02











  • Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
    – Michael Kohne
    Mar 27 '13 at 19:04










  • OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
    – jcm
    Sep 13 '14 at 11:52















If you want to collect hard evidence, changing your password is the last thing you want to do!
– Michael Zedeler
Mar 23 '13 at 21:26




If you want to collect hard evidence, changing your password is the last thing you want to do!
– Michael Zedeler
Mar 23 '13 at 21:26




17




17




If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
– huntmaster
Mar 27 '13 at 13:55





If you want to protect yourself from potential damage done in your name, changing your password is the first thing you want to do.
– huntmaster
Mar 27 '13 at 13:55





1




1




@huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
– Michael Kohne
Mar 27 '13 at 19:02





@huntmaster is right - defend yourself FIRST. Change all your passwords related to work (especially any ones that are the same as the one that got logged). Using your password he could do anything and make it look like it was you.
– Michael Kohne
Mar 27 '13 at 19:02













Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
– Michael Kohne
Mar 27 '13 at 19:04




Also, make sure that all your passwords are DIFFERENT. That way compromise of, say, the login for your computer, won't give him everything.
– Michael Kohne
Mar 27 '13 at 19:04












OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
– jcm
Sep 13 '14 at 11:52




OSX has an app called Keychain Access that stores credentials (WiFi, website passwords, etc.). The default keychain is unlocked with the user password. If there's anything saved there better change those passwords too.
– jcm
Sep 13 '14 at 11:52












up vote
12
down vote













As mentioned already change all your passwords.



There should be no expectation of privacy on company resources. Although that may vary depending on what country/state you are in.



So the next thing to check is if this is authorised behaviour. So I would go to a senior manager (or security department if you have one) and explain the situation.



If it is authorised monitoring then you need to live with it. I doubt very much it is based on what you described, as they would just give him an admin account to your machine to monitor/review.



The main point is, if someone is liable to circumvent the security process to access resources under another users details, they are liable to do it to others as well (ie. your CEO/senior management). That should be the point you are getting across, not that you have an issue with the team lead directly.






share|improve this answer
















  • 3




    I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
    – jmac
    Mar 25 '13 at 7:35






  • 1




    Yea, wording it should always be non-confrontational.
    – Simon O'Doherty
    Mar 25 '13 at 7:40






  • 1




    It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
    – jmac
    Mar 25 '13 at 7:45






  • 2




    But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
    – Simon O'Doherty
    Mar 25 '13 at 8:37






  • 3




    What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
    – jmac
    Mar 25 '13 at 8:45














up vote
12
down vote













As mentioned already change all your passwords.



There should be no expectation of privacy on company resources. Although that may vary depending on what country/state you are in.



So the next thing to check is if this is authorised behaviour. So I would go to a senior manager (or security department if you have one) and explain the situation.



If it is authorised monitoring then you need to live with it. I doubt very much it is based on what you described, as they would just give him an admin account to your machine to monitor/review.



The main point is, if someone is liable to circumvent the security process to access resources under another users details, they are liable to do it to others as well (ie. your CEO/senior management). That should be the point you are getting across, not that you have an issue with the team lead directly.






share|improve this answer
















  • 3




    I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
    – jmac
    Mar 25 '13 at 7:35






  • 1




    Yea, wording it should always be non-confrontational.
    – Simon O'Doherty
    Mar 25 '13 at 7:40






  • 1




    It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
    – jmac
    Mar 25 '13 at 7:45






  • 2




    But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
    – Simon O'Doherty
    Mar 25 '13 at 8:37






  • 3




    What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
    – jmac
    Mar 25 '13 at 8:45












up vote
12
down vote










up vote
12
down vote









As mentioned already change all your passwords.



There should be no expectation of privacy on company resources. Although that may vary depending on what country/state you are in.



So the next thing to check is if this is authorised behaviour. So I would go to a senior manager (or security department if you have one) and explain the situation.



If it is authorised monitoring then you need to live with it. I doubt very much it is based on what you described, as they would just give him an admin account to your machine to monitor/review.



The main point is, if someone is liable to circumvent the security process to access resources under another users details, they are liable to do it to others as well (ie. your CEO/senior management). That should be the point you are getting across, not that you have an issue with the team lead directly.






share|improve this answer












As mentioned already change all your passwords.



There should be no expectation of privacy on company resources. Although that may vary depending on what country/state you are in.



So the next thing to check is if this is authorised behaviour. So I would go to a senior manager (or security department if you have one) and explain the situation.



If it is authorised monitoring then you need to live with it. I doubt very much it is based on what you described, as they would just give him an admin account to your machine to monitor/review.



The main point is, if someone is liable to circumvent the security process to access resources under another users details, they are liable to do it to others as well (ie. your CEO/senior management). That should be the point you are getting across, not that you have an issue with the team lead directly.







share|improve this answer












share|improve this answer



share|improve this answer










answered Mar 22 '13 at 8:10









Simon O'Doherty

4,85111435




4,85111435







  • 3




    I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
    – jmac
    Mar 25 '13 at 7:35






  • 1




    Yea, wording it should always be non-confrontational.
    – Simon O'Doherty
    Mar 25 '13 at 7:40






  • 1




    It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
    – jmac
    Mar 25 '13 at 7:45






  • 2




    But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
    – Simon O'Doherty
    Mar 25 '13 at 8:37






  • 3




    What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
    – jmac
    Mar 25 '13 at 8:45












  • 3




    I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
    – jmac
    Mar 25 '13 at 7:35






  • 1




    Yea, wording it should always be non-confrontational.
    – Simon O'Doherty
    Mar 25 '13 at 7:40






  • 1




    It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
    – jmac
    Mar 25 '13 at 7:45






  • 2




    But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
    – Simon O'Doherty
    Mar 25 '13 at 8:37






  • 3




    What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
    – jmac
    Mar 25 '13 at 8:45







3




3




I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
– jmac
Mar 25 '13 at 7:35




I urge caution when accusing someone (especially your boss) based on conjecture with no proof about something this serious. And this isn't just a casual, "Hey IT guy, recently I think my boss stole my password using a keylogger on his computer. Is that company policy?"
– jmac
Mar 25 '13 at 7:35




1




1




Yea, wording it should always be non-confrontational.
– Simon O'Doherty
Mar 25 '13 at 7:40




Yea, wording it should always be non-confrontational.
– Simon O'Doherty
Mar 25 '13 at 7:40




1




1




It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
– jmac
Mar 25 '13 at 7:45




It's not about the wording, it's about the concept of making very serious accusations without any solid proof. That is really really dangerous no matter how you dress it up as something else. Hopping over the boss' head implies you think they are guilty from the start, and shifts responsibility for proving that to someone else who is bound to actually look in to it. That is a serious thing and should not be done lightly.
– jmac
Mar 25 '13 at 7:45




2




2




But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
– Simon O'Doherty
Mar 25 '13 at 8:37




But you don't make an accusation. You just state the facts as you see them. For example: "X asked me to log in from his machine to mine with my login. I saw what looked like a keylogger when I did this. Should I be worried?".
– Simon O'Doherty
Mar 25 '13 at 8:37




3




3




What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
– jmac
Mar 25 '13 at 8:45




What would this person do about it? If they check the boss' PC on your comment, the boss gets pissed. If they don't check the boss' PC, then you don't get an answer. They are put in a situation where your "comment" made them have to either imply the boss is guilty (by requiring the boss' PC to be investigated), or ignore a request that could be a huge breach of company policy. This is 100% an accusation and it will put whoever is asked in an awful situation. This is not something to be done lightly.
– jmac
Mar 25 '13 at 8:45












 

draft saved


draft discarded


























 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fworkplace.stackexchange.com%2fquestions%2f10501%2fhow-to-deal-with-a-colleague-trying-to-steal-my-password%23new-answer', 'question_page');

);

Post as a guest
































































Comments

Post a Comment

Popular posts from this blog

White Anglo-Saxon Protestant

Image
White Anglo-Saxon Protestants ( WASPs ) are a social group of wealthy and well-connected white Americans, of Protestant and predominantly British ancestry, who trace their ancestry to the American colonial period. Until at least the 1960s, this group has dominated American society and culture and dominated in the leadership of the Whig and Republican parties. They usually are very well placed in major financial, business, legal and academic institutions and had close to a monopoly of elite society due to intermarriage and nepotism. [1] During the latter half of the twentieth century, outsider ethnic and racial groups grew in influence and WASP dominance weakened. Americans are increasingly criticizing the WASP hegemony and disparaging WASPs as the epitome of "the Establishment". The Random House Unabridged Dictionary (1998) says the term is "Sometimes Disparaging and Offensive". [2] [3] The term WASP is often used as a pejorative to classify their historical dom...
Read more

Is the Concept of Multiple Fantasy Races Scientifically Flawed? [closed]

Image
Clash Royale CLAN TAG #URR8PPP up vote 2 down vote favorite Many fantasy worlds have multiple humanoid species (elves, orcs, humans, etc) living in the same world, in addition to that, they often have the ability to interbreed. And I can't help but question their believability... fantasy-races reproduction interspecies-relations share | improve this question edited Aug 9 at 14:46 Michael Kjörling ♦ 21.1k 10 85 161 asked Aug 9 at 13:13 Chlodio 118 6 closed as unclear what you're asking by MichaelK, Gryphon, John, Vincent, Frostfyre Aug 9 at 15:25 Please clarify your specific problem or add additional details to highlight exactly what you need. As it's currently written, it’s hard to tell exactly what you're asking. See the How to Ask page for help clarifying this question. If this question can be reworded to fit the rules in the help center, please edit the question. ...
Read more

One-line joke

A one-liner is a joke that is delivered in a single line. A good one-liner is said to be pithy - concise and meaningful. [1] Comedians and actors use this comedic method as part of their act, e.g. Jimmy Carr, Tommy Cooper, Rodney Dangerfield, Norm Macdonald, Ken Dodd, Stewart Francis, Zach Galifianakis, Mitch Hedberg, Anthony Jeselnik, Milton Jones, Shappi Khorsandi, Jay London, Mark Linn-Baker, Demetri Martin, Groucho Marx, Dan Mintz, Emo Philips, Tim Vine, Steven Wright and Henny Youngman and Arnold Schwarzenegger. [ citation needed ] Many fictional characters are also known to deliver one-liners, including James Bond, who usually includes pithy and laconic quips after disposing of a villain. [ citation needed ] Examples "A baby seal walks into a club." "A dyslexic man walks into a bra." (Anonymous) "There are three types of people, those who can count and those who can't." "Venison's dear, isn't it?" (Jimmy Carr) "An escala...
Read more