Paraphrasing from the article, this tool allows the machine to have internet access while being isolated from the local network.

This should be enforced at the switch level.

Sometimes Ops takes 48 hours to resolve tickets.

Did you read about what this actually does?

I dislike comments like this because you're not actually making a point. For all you know the parent did read the article. I did too - and I still took a minute to not have the same concern as the parent. If you read the article, why don't you enlighten everyone else reading your comment?

My first thought was similar - because I was picturing actively self-replicating malware, and you're right - if you don't want that on your own network you shouldn't be opening up everyone else's network to it. But I think the point is just to open up pockets inside your trusted network for less-trusted machines. It's not that you think they have viruses, it's that you just don't want them to have access to the rest of your internals. Most places have an entirely separate network for guests, but if this was reliable and robust enough, maybe it would be a nice alternative.

If you're investigating a botnet (how it spreads, CnC operations), this would be a nice tool to have.