Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.
TL;DR: Keep browsing to your local instance at work for now.
Handling sensitive or classified data is absolutely a valid justification for categorically banning the use of unauthorized VPNs. Doing so effectively eliminates a huge data exfiltration vector, which can be a major concern in those contexts. It’s not about being a dick to the workforce - it’s about making sure you’re prepared for that one fucking asshole who thinks he’s special and can get away with it.