Do you travel? Almost everyone does at some point or another, whether for business or pleasure. And you are probably very conscious of the threats of having your pocket picked or your luggage stolen while you travel. Well, you should also be aware that there are cyber criminals who are looking to steal from you as well, and the consequences could be far, far worse than a missing wallet. Whether you’re at an airport or any local restaurant or coffee shop, you need to beware of fake WiFi hotspots trying to steal your data.
How You Can Get Hacked On A Fake WiFi Hotspot
So how does a typical hack on a free or public WiFi network actually happen? There’s more than one way.
The most obvious way is for some malicious person or company to put up its own competing WiFi network. These “Evil Twin” networks are named in a way that looks legitimate, but is far from it. Once connected to one of these malicious networks, users are open to a variety of threats.
- Data Eavesdropping: For example, all of your data can be monitored and recorded by criminals. They can see the images you send, the text you type, and even the usernames and passwords you use.
- Malware Injection: These fake wifi hotspots can be configured to load malicious software onto your phone or computer. These viruses or trojans then install themselves on your device and remain there, even when you leave the fake hotspot where you were originally infected. PC and Mobile Malware can steal your passwords, encrypt and hold your data hostage, and spread themselves to other devices.
And here’s how easily this can happen: The legitimate free WiFi at Los Angeles International Airport is called “_LAX Free WiFi”. A bad guy might name his Evil Twin network something as similar as “LAX Free Public WiFi” and most of the travelers in the terminal would never know the difference. They’ll happily connect and have no idea they are getting hacked on a fake wifi network.
But the threats don’t come entirely from fake wifi networks. They can also come from legitimate, but free and open wifi networks. There are dozens of programs that allow hackers to monitor unencrypted network traffic on wifi networks, and most of them are free to download.
Hackread, a website I monitor to learn about trends in hacking and cyber security, wrote about a recent report that tells how much at risk you are at certain airports around the country. The report, by Coronet (a cyber security software company), surveyed the top 45 busiest airports and rated each one with a “Threat Score”. Here are the top 5 most dangerous airports for connecting to free WiFi:
- San Diego International Airport (San Diego) Threat Index Score: 10
- John Wayne Orange County Airport (Santa Ana, Calif) – Threat Index Score: 8.7
- William P Hobby Airport (Houston) – Threat Index Score: 7.5
- Southwest Florida International Airport (Fort Myers, Fla.) – Threat Index Score: 7.1
- Newark Liberty International Airport (Newark, N.J.) – Threat Index Score: 7.1
How To Keep Your Devices Secure While Travelling
So what can you do to protect yourself? We wrote about Tech Travel Dangers and how to avoid them before, but here some are some tips for you.
- Don’t connect to free or open WiFi networks EVER. This is by far your best advice.
- Bring your own WiFi with you, whether it’s your own hotspot on your phone or a separate device.
- If you must connect to a public, encrypted network (wired or wireless), make sure that you have a software firewall enabled on your computer or mobile device.
- When connecting to any public WiFi, even if it’s secure, instantly turn on a VPN (Virtual Private Network).
Whether you’re in an airport or in the middle of town, fake wifi hotspots, as well as free or open WiFi networks, are dangerous. By the time your travels are over, you might find your entire office network hacked, your sensitive data breached, or worse.
Why Talk With Digital Uppercut?
That’s why you should talk with Digital Uppercut, whether you’re travelling or not. If your office networks and mobile devices are not secured, whether you think your staff might be connecting to fake WiFi hotspots or not, your business is vulnerable. And if your business is regulated (by medical, financial, or legal authorities), those vulnerabilities could not only cost you your data, and your business, but huge fines and worse. Digital Uppercut is a company that not only specializes in digital security, we are also experts at regulatory compliance, such as HIPAA, FINRA and PCI. We can do a free, preliminary audit to help you identify whether you are vulnerable. Contact us or Call us today at 818-913-1335 and let’s set up a time to talk.