Special offer

Surf Safely: Armoring Your Digital Life on Public Wi-Fi Waves

By
Services for Real Estate Pros with IDTheftSecurity.com Inc

Protecting one’s data and devices on public Wi-Fi goes beyond protecting oneself on just the Wi-Fi aspect. Cyber security is holistic in its nature, meaning the devices hardware, software, and various forms of access control all need consideration.

I hear all the time that criminal hackers are so “sophisticated”. I suppose they are, but what they really are is organized, and they treat fraud like a business. Do you know who’s really sophisticated? White hat hackers also known as penetration testers. These are the security experts deployed to seek out vulnerabilities in your networks and to offer recommendations to tighten them up.

And for you laypersons, I’m going to let you in on a little secret that both criminal hackers, and the good guy hackers know: there are very basic, user-friendly tools that hackers on both sides of the fence use to “hack us” on public Wi-Fi:

The top three software tools that penetration testers commonly use to infiltrate and test the security of insecure Wi-Fi connections are:

  1. Aircracking: This is a comprehensive suite of tools for auditing wireless networks. It can monitor traffic, crack WEP and WPA/WPA2-PSK keys after capturing data packets, and check for vulnerabilities in wireless access points.
  2. Kismet: A wireless network detector, sniffer, and intrusion detection system. It can passively collect packets from both hidden and non-hidden networks, detect wireless access points and associated clients, and identify networks by probing them.
  3. Wireshark: A popular network protocol analyzer that can capture and inspect wireless traffic. It helps identify potential security issues by analyzing the data packets traveling over the Wi-Fi network.

These tools allow penetration testers to scan for and identify nearby wireless networks, capture network traffic, crack encryption keys, and exploit vulnerabilities in wireless access points and devices connected to the network. They are essential for comprehensively assessing the security posture of Wi-Fi networks during penetration testing engagements.

Keep in mind, anyone, and everyone, both good and bad have access to these software programs.

There are a number of vulnerabilities requiring consideration including:

Man-in-the-Middle (MITM) attacks: Hackers can position themselves between your device and the network, intercepting all your internet traffic to steal sensitive data like passwords, financial information, etc.

Malware distribution: Public Wi-Fi can be used to spread malware that infects connected devices, allowing hackers to access files, spy on activities, or render devices unusable.

Unencrypted connection: Many public Wi-Fi networks lack encryption, allowing anyone on the network to easily snoop on your online activities and data transmissions.

Rogue hotspots: Cybercriminals can set up fake Wi-Fi access points with legitimate-sounding names to lure users and monitor their traffic.

Snooping and sniffing: Hackers can use tools to eavesdrop on Wi-Fi signals and capture data like webpages visited, login credentials, and more.

Malicious hotspots: Hackers create malicious hotspots with similar names to legitimate ones to trick users into connecting, enabling MITM attacks.

Lack of authentication: Most public Wi-Fi is open with no authentication required, allowing anyone to join and potentially launch attacks.

The key risks involve exposing your private data and online activities to malicious actors exploiting the lack of security on public wireless networks.

Here are 10 ways to lock down your data and prepare yourself on free open public Wi-Fi:

  1. Verify the wireless network is in fact legitimate. Confirm the network name with staff at the municipality, airport, or wherever, or seek out posted signage before connecting. Wi-Fi hackers can create fake hotspots often known as “evil twins” with similar names to trick Wi-Fi users.
  2. Avoid accessing sensitive information. If possible, avoid logging into sensitive accounts such as online banking or entering passwords on public Wi-Fi as your data can be intercepted. Save the critical and sensitive data processing for at home or at work on a secure Wi-Fi connection.
  3. Use a VPN. A virtual private network encrypts your internet traffic, protecting it from snooping on public networks. The VPN software is free to a small fee, and is your best defense against digital Wi-Fi snooping.
  4. Enable two-factor authentication. Any and all Critical accounts need additional password protection and this is done generally via your mobile phone as a second form of authentication receiving a one time pass code via text. This extra login step code sent to your phone for accounts that offer it, prevents unauthorized access even if your password is compromised.
  5. Keep software updated. Install the latest operating system and software app updates which often include security patches to protect against vulnerabilities. Outdated software creates vulnerabilities that Wi-Fi hackers can seek out.
  6. Use antivirus software. Paid antivirus comes with antivirus, anti-spyware, anti-phishing, and a firewall. Antivirus programs are designed to detect and block malicious software that spies on you and can infect your device on unsecured public Wi-Fi networks.
  7. Log out after use. When finished on critical websites, log out of websites and shut down tabs or even your whole browser, and disconnect from the Wi-Fi network to minimize exposure.
  8. Enable firewall. By default, your firewall should be turned on. Keep your device's firewall enabled to block unauthorized access while on public networks. The devices operating system should come equipped with a built-in, firewall, or do a search engine query for the name of the operating system in the word firewall for instructions on how to enable it.
  9. Avoid auto-connecting. In your devices Wi-Fi settings, you should be able to toggle off various known Wi-Fi hotspots. Disabling automatic Wi-Fi connection on your devices prevents joining rogue hotspots that may be set up as “evil twins”.
  10. Browse securely. By default, your browser should let you know if a particular website is at risk. Only visit HTTPS encrypted websites which are more secure than unencrypted HTTP sites when on public Wi-Fi.

Robert Siciliano CSP, CSI, CITRMS is a security expert and private investigator with 30+ years experience, #1 Best Selling Amazon.com author of 5 books, and the architect of the CSI Protection certification; a Cyber Social Identity and Personal Protection security awareness training program. He is a frequent speaker and media commentator, and CEO of Safr.Me and Head Trainer at ProtectNowLLC.com.

Doug Dawes
Keller Williams Evolution - 447 Boston Street, Suite #5, Topsfield, MA - Topsfield, MA
Your Personal Realtor®

This is good information Robert Siciliano 

I've considered using a VPN yet have found them to slow down my connection. Are VPNs like NORD or Virtual Shield worthy or should I stick with the one in my Kaspersky anti-virus?

Apr 10, 2024 01:54 PM
Robert Siciliano

Both VPNs are fine, and your existing is good too.

Apr 13, 2024 06:52 AM
Dennis Neal
RE/MAX, Big Bear - Big Bear Lake, CA
Your Home Sold in 21 Days or We Sell It For Free

Hi, Robert. Thanks for sharing. This is a very extensive post. Have a fantastic week.

Apr 10, 2024 07:56 PM
Kat Palmiotti
eXp Commercial, Referral Divison - Kalispell, MT
Helping your Montana dreams take root

Excellent tips as always - thank you for sharing.

Apr 11, 2024 05:14 AM
Carol Williams
Although I'm retired, I love sharing my knowledge and learning from other real estate industry professionals. - Wenatchee, WA
Retired Agent / Broker / Prop. Mgr, Wenatchee, WA

Thanks, Robert. We always appreciate your advice for protecting us online.

Apr 11, 2024 09:11 AM
Laura Cerrano
Feng Shui Manhattan Long Island - Locust Valley, NY
Certified Feng Shui Expert, Speaker & Researcher
Things like private browsing and VPNs can be very helpful In my experience In the exact way you’re talking about In my experience.
Apr 11, 2024 06:13 PM
Andrew Mooers | 207.532.6573
MOOERS REALTY - Houlton, ME
Northern Maine Real Estate-Aroostook County Broker

In Boston too but at Logan ready to fly out to a cruise vacation. The network for BOSWIFI is vulnerable, open, has weak password and poor encryption. Thank you Robert Siciliano 

Apr 12, 2024 04:38 AM
Dorie Dillard Austin TX
Coldwell Banker Realty ~ 512.750.6899 - Austin, TX
NW Austin ~ Canyon Creek and Spicewood/Balcones

Good afternoon  Robert Siciliano ,

What a detailed post! It's making my head swim!! I always appreciate you taking the time to educate us!

Apr 12, 2024 03:21 PM
Nina Hollander, Broker
Coldwell Banker Realty - Charlotte, NC
Your Greater Charlotte Realtor

Good morning, Brian... this is excellent information and advice. I am going to provide your suggestions to my data base in my bi-monthly newsletter later this month.

Apr 13, 2024 06:20 AM
David watsan
webdeveloper - Big Lake, AK

Kipas Folks is a free multiplayer Android mod for Stagger Folks created by Kitka Games. Being a mod, it enhances the first game by adding various highlights. You can get to recently locked skins, acts out, and maps Kipasguys

 

Turn on your television and select the suitable contribution for the OTT guide. Adhere to the on-screen guidelines to set up the gadget and interface with your Wi-Fi organization. Register the OTT pilot with your web-based feature supplier, whenever required. Begin streaming substance by choosing the ideal application or channel Website 

Apr 13, 2024 11:15 PM
Patricia Kennedy
RLAH@properties - Washington, DC
Home in the Capital

Hi, Robert!

I included this post in today's Last Week's Favorites. Thank you so much for writing it!  

 

Apr 14, 2024 08:28 AM
Laura Cerrano
Feng Shui Manhattan Long Island - Locust Valley, NY
Certified Feng Shui Expert, Speaker & Researcher

I agree. You just have to do what you have to do and take it from there and hope that it works, but that’s life and most aspects.

Apr 14, 2024 10:57 PM