Ten strategies for practicing Wi-Fi cybersecurity

VUMC IT
October 31, 2017
Posted in
Security Updates

October is cyber security awareness month

Ten strategies for practicing Wi-Fi cybersecurity

The use of public Wi-Fi has become a topic of concern for many people, especially those in the cybersecurity. There are Wi-Fi connections nearly everywhere now. Anyone with a phone, a computer, or other device has used this convenient tool because of its availability and ease-of-use. Our favorite restaurants, coffee shops, airports, and meeting places offer Wi-Fi hotspots. We sit down, connect, check email, share pictures and log-in to our favorite social media platforms and business sites. If we don’t begin protecting ourselves, however, opening a Wi-Fi connection is offering cybercriminals new ways to access and steal our information.

Top three public Wi-Fi risks

Availability of information

One factor that makes public WiFi dangerous is the availability of the information transferred over the Internet. When you access a public Wi-Fi, it is possible for anyone to see you are there, if they have the proper software. With applications known as “sniffer” software, an attacker can see all traffic moving on the hotspot, also called a Service Set Identifier (SSID), you and others are attached to while having a cup of coffee and working.

Applications and tools designed for cybercrime

Another way cybercriminals get away with Wi-Fi “spoofing” using even more nefarious tools and devices. This time, the cybercriminal wants more than your information, they can use these fake hotspots to infect your computer with a virus, allow access to your files, or, even worse, turn your computer into a botnet.

Exploiting the device itself

Cybercriminals can also take your information by exploiting your phone’s WiFi settings. Cell phones and computers keep a list of saved SSIDs connected to in the past. If you happen to walk or drive by a hotspot you recently visited and used Wi-Fi, the proximity to the access point can put you at risk.  Unfortunately, devices are set to search for Wi-Fi all the time. As they constantly look for previously connected networks, hotspots respond back to your device, sometimes even connecting. Attackers who utilize a rogue access point (a fake Wi-Fi hotspot) can trick your phone into connecting. Your data is now in the hands of an attacker and can even be used as a bot. 

According to Norton.com, a Bot is an “Internet-connected device infected with malware that allows hackers control of many devices at once. When combined, these devices form powerful bot networks (botnets) that can spread malware, generate spam, and commit other types of crime and fraud online.”

The newest device exploit involves using WiFi access points on certain devices with security protocols that haven’t been recently updated. The key-reinstallation attack (KRACKS) allows a cybercriminal access to a device thought to be secure. See this recent VUMC IT Security Operations Blog regarding the KRACKS attack.

There are ways you can protect yourself from Wi-Fi hackers. Here are:

Ten strategies to keep your devices safe while using public Wi-Fi:

  1. If you don’t know who manages the free Wi-Fi, then you probably shouldn’t use it.  If you are going to use it, don’t access personal bank accounts, log-in to sensitive accounts or do any online shopping.
  2. Be careful about the “Terms of Service” button you click and agree to. Attackers use these as the attack itself in many situations to infect your device.
  3. Use a VPN when you can. Virtual Private Networks (VPN) will encrypt your information and create a tunnel of protection for your data. VUMC IT has a VPN option for credentialled users that comes in handy when working offsite.
  4. Consider multi-factor authentication (MFA) on all of your devices. MFA creates an extra layer of security by asking for a password or key from a second device to log-in. The VUMC version of MFA utilizes a safe token that generates a code at login. If an attacker has your username and password but doesn’t have that code, they’re done.
  5. Update your computer’s operating system, browser, and third-party applications regularly.  It takes longer for an attacker to penetrate a fully-patched device. Read this VUMC Blog article about how attackers are now using new methods and exploits to hack secure Wi-Fi using unpatched devices.
  6. Remove SSIDs from your device periodically to keep your phone clean and even operating more smoothly.
  7. Never leave your device unattended while in a public place.
  8. Use common sense.  Don’t open emails you are not expecting and take extra time to inspect a web page or a public Wi-Fi welcome page.
  9. Turn off automatic connectivity to your smart devices. As mentioned previously in this article, this convenient feature can also connect your device to networks you aren’t aware of.
  10. Monitor your Bluetooth connectivity. Leaving Bluetooth on while in public places allows various devices to communicate with each other, creating yet another way for a hacker to get your information.

Free public Wi-Fi, secure or not, remains a reliable method of staying connected throughout busy, fast and demanding days. Cybercriminals, though, are becoming savvier about how they steal your information. Take a few moments to practice cybersecurity instead of being a victim of it.