How to Keep Your Business Safe on Public Wi-Fi
If you travel for your business — or just need an occasional change of scenery from your home office — you're probably a regular user of public Wi-Fi networks. But if you’re not careful, these internet connections can make your data vulnerable to hackers.
Here’s how to protect yourself while using someone else’s network:
- Beware of “dummy” networks. Let’s say your hotel’s Wi-Fi server is called “PierpointHotel.” A hacker could set up a fake network named “PierpointHotelGuest” that looks and acts like a normal wireless internet connection. But there's a catch: If you join the fake network, the thief could capture your keystrokes, access your computer, and copy your passwords and other personal information. Be extra sure you’re connecting to the right network.
- Favor networks that require passwords. “Wi-Fi networks that require a WPA key are orders of magnitude safer than networks using WEP passwords or no encryption at all,” says Darren Kitchen, host, producer, and founder of the online technology show Hak5. A WPA key is a password you enter on a security screen before you join a network, not one you’re asked for in a web browser after you connect.
- Don’t access your bank or credit card accounts. Don’t even quickly check your balance through a public hotspot. Although your bank probably encrypts your online sessions, hackers can still view the name of your financial institution as you connect. Using that, they could send you fake “phishing” emails or set up a spoof network that mimics your financial institution’s name (see “Beware of dummy networks” above). Wait until you’re connected to your secure home or business network to access any financial accounts.
- Watch what you email. Consider your emails to be public postcards. Don’t send notes that include business account information or client details that they wouldn’t want shared. If you must email sensitive data, Kitchen suggests encrypting it with a Pretty Good Privacy (PGP) program such as Mailvelope.
- Stay off Facebook, Twitter, Amazon, and other personal accounts. It may sound like overkill, but Kitchen says hackers could easily reel you in through your favorite sites. “What looks like Facebook, Amazon, or Twitter to you could just as easily be a phishing site designed to harvest your account,” he says. “Alternatively, hackers can employ session-hijacking methods, which involve stealing the authentication cookie while in transit — for instance, if you have a ‘remember me’ [set up], so you’re not prompted for a password every time. By doing so, an attacker can pose as you without needing your password at all.” If you must log on to these accounts, it’s probably safer to do so via your smartphone instead of your laptop.
- Avoid public Wi-Fi altogether. That’s your best bet, says Kitchen, who feels strongly that it’s just too risky. Use your laptop offline for work while you’re away from the office whenever possible. Or if you truly need access to email or online accounts, set up a Virtual Private Network for your business. (Kitchen has used WiTopia, because it’s easy and inexpensive.) These networks let you get online more safely than public Wi-Fi while away from the office by encrypting everything you do. An easier and possibly more secure option, albeit a costlier one ($25 or so per month), is using a mobile broadband adapter from providers like T-Mobile, Sprint, or Verizon. These gadgets let you create your own, password-protected mobile network wherever you go.