Friday, May 20, 2011

Ten Tips for Public Wi-Fi Hotspot Security


1.   Pick Securest Network
Althouh many hotspots have no security set, some do. If you have a choice, select those that use some form of encryption. You can tell which networks are secured in Windows 7 by left-clicking on the wireless network connections icon, pictured here. Hovering the mouse over each SSID will display the security type. 

Try to avoid those networks with the security type, "Unsecured," if possible. In Vista and XP, secured network SSIDs are displayed with a lock when you click open wireless network connections. Of course, you will need the password key to access, but some establishments (hotels are a good example, and security-conscious coffee shops do exist) provides guests with Wi-Fi passwords. In order of preference, choose networks secured with WPA2 encryption, then WPA. WEP is a better-than-nothing last resort. 

2.      Set Network Location to "Public"

When you connect to a new network connection with Windows 7, the "Set Network Location" window pops-up automatically. Be sure and set the location to "Public Network" when prompted, if you're connecting to a public hotspot. The Public Network location blocks file and printer sharing-which are common routes for data snoopers. HomeGroup is not available with this option selected and network discovery is turned off, too; all of which makes your data less visible on a wireless network.

2.       Use a VPN

Use a third-party VPN product like HotSpot Shield, GoTrusted Secure Tunnel 2 or an all cloud-based option like HotSpot VPN. These solutions protect by creating a virtual private network between your machine and their network-a virtual tunnel. This tunnel is secured against anyone who may try to intercept your Web session while connected to a public hotspot: hackers, snoopers, bots and the like. Be forewarned, Web surfing and file downloading may be a little slower using VPN.

3.       Harden Your Data Defenses

Antivirus software and security suites are great, but you should also harden your data defenses in case someone gets through. In Windows, hide folders that contain sensitive data—it's easy to do: just right-click on the folder and select "Properties" and then under the "General" tab, set the folder's attributes to "Hidden." You will still be able to see the folder, although the folder icon will appear transparent. Then go into Windows Explorer. Click on the "Organize" button and then select "Folder and Search Options" to launch Folder Options. Click on the "View" tab and then select "Don't show hidden files, folders and drives." This is of course, not the strongest of security defenses, but it's a way to make it that much harder for intruders to readily see find sensitive data.


4.       Avoid Banking Via Public Hotspots

This is less a technical tip than a behavioral one: if at all possible, avoid doing more serious tasks like bill paying, accessing your bank account, or using your credit card when connected to public Wi-Fi. Save those transactions for when you're connected safely to your home wireless network. Because that's secure, right? Opt to Not Save Passwords

Yes, it is tempting. There are just so many passwords to remember. Websites and browsers are forever asking if you want to save and store passwords. A general rule of thumb: you're probably better off not storing your username and password anywhere, especially when it comes to banking sites and the like. That goes double for road warriors who frequently connect via public Wi-Fi. If you have trouble remembering your password, use a utility like the excellent LastPass to keep track of them for you.

5.       Use HTTPS and SSL

Many websites use HTTPS and SSL to make your connection to them more secure-both are protocols that provide encrypted communications. For example, you can access Gmail via http://www.gmail.com or https://www.gmail.com. The latter is a more secure option. Most financial institutions use SSL on their websites. In Internet Explorer 8, the address bar turns green and display a padlock when you access a secured website—other browsers offer similar notifications.

6.       Remove Sensitive Data From Your Laptop

Consider leaving home without it. If possible, remove sensitive data like spreadsheets, bank files, or documents with a social security number from your laptop you travel. Leave them on your home machine. If it's must access that data, consider storing it on a NAS device that you can access from the road. That way you can get to your data but not have it reside on a machine that you connect to public hotspots.

7.       Use a Firewall

Turn on Windows Firewall, and use the setting for public networks for more secured access. There are several robust firewall third-party solutions out there too, which protects against hack attacks, controls how programs access the Internet and offers identity protection. You should have a firewall enabled whether you are home or on the road, but it's especially wise to turn it on when connecting to public hotspots.

8.      Keep Your OS and Apps Patched and Updated

Windows Updates are an annoying yet necessary evil. OS X updates less frequently, but updates can also be critical for Apple too—so don't be lulled into a false sense of security because you're a Mac user. OS updates are serious business; they often fix serious security holes. And once the update is available, everyone in the world knows about the hole—if you haven't patched it, your laptop is a low-hanging fruit ready to be plucked by an opportunistic hacker. And don't forget your other apps either; even people who remember OS updates often forget to keep their apps patched. App updates may also fix serious security holes, too.

Source: pcmag

No comments:

Post a Comment