Tuesday, March 1, 2011

Public WiFi - You are not alone...

One of the concepts I teach in both my consulting business and the classroom is when you are using free public WiFi access you have to take precautions because you are not alone. Public WiFi access is free but the security is not. Here is a scenario.


You are at your favorite coffee shop that offers free WiFi. You connect your laptop and surf out to Facebook or you go check your email. Now unbeknown to everyone in the coffee shop is a hacker that is "sniffing" the wireless network. Since you have no security protocols and access does not require any type of password or key, all of the wireless traffic can be recorded on a packet sniffer such as Wireshark, Cain & Abel, or NetResident. A packet sniffer is software that captures packets on a wired or wireless network. The packets captured show the network or internet traffic that a person is creating by surfing on the internet or while using the network. These packets will contain usernames and passwords that you type into a web browser as well as the location of all the sites you are browsing too. If you put any PII (Personal Identifiable Information) on the internet, the hacker can capture this information and sell it on the internet which would create "Identity Theft" for the user.


 The hacker may even attempt to gain access to your laptop right there in the coffee shop as well. Also remember the hacker does not have to be in the coffee shop, they can be several hundred yards away using a special high gain antennae to access the wireless network.


So is there such a thing as using a free wireless network safely? Yes, you can. You just have to follow a few simple rules to protect yourself.

 1) If your on a company laptop, make sure you are using a VPN (Virtual Private Network) connection. This will encrypt your connection and you can safely access the internet through your company. Don't have a company vpn? Try AnchorFree, it is a free vpn client that anyone can install and use to surf the internet through a secure vpn server.


 
2) If you need to just check your email or access a web site make sure you are using https or ssl to ensure you are checking your email with a encrypted and safe connection.


3) If you are going to surf the internet in public try using a wireless phone modem device which you can purchase from your wireless carrier. It is a USB device you plug in to access a secure wireless network for your computer.

Good luck and remember "we are not alone on the internet".

- Tom Pruett, Cisco & Security Expert; MCT, CTT+, CISSP, CWNA, CEH, CHFI, CCSI, CCNA, MCSE LinkIn with Tom

Bookmark and Share

No comments:

Post a Comment