Public Wi-Fi hotspots are usually unsecured. After all, they're intended to be a convenience, so it's in their admins interest to make it easier for users to connect to them. Unfortunately, that same lack of security also makes connecting to them risky. Here are ten very simple measures you can take to stay safe, whether you're connecting in the coffee shop next door or in an airplane 35,000 feet in the air.
Pick The Securest NetworkAlthough many hotspots have no security set, some do. If you have a choice, select those that use some form of encryption. You can tell which networks are secured in Windows 7 by left-clicking on the wireless network connections icon, pictured here. Hov
ering the mouse over each SSID will display the security type. Try to avoid those networks with the security type, "Unsecured," if possible. In Vista and XP, secured network SSIDs are displayed with a lock when you click open wireless network connections. Of course,you will need the password key to access, but some establishments (hotels are a good example, and security-conscious coffee shops do exist) provides guests with Wi-Fi passwords. In order of preference, choose networks secured with WPA2 encryption, then WPA. WEP is a better-than-nothing last resort.
Set Network Location to "Public"When you connect to a new network connection with Windows 7, the "Set Network Location" window pops-up automatically. Be sure and set the location to "Public Network" when prompted, if you're connecting to a public hotspot. The Public Network location blocks file and printer sharing-which are common routes for data snoopers. HomeGroup is not available with this option selected and network discovery is turned off, too; all of which makes your data less visible on a wireless network.
Use a VPNUse a third-party VPN product like HotSpot Shield; GoTrusted Secure Tunnel 2 or an all cloud-based option like HotSpot VPN. These solutions protect by creating a virtual private network between your machine and their network-a virtual tunnel. This tunnel is secured against anyone who may try to intercept your Web session while connected to a public hotspot: hackers, snoopers, bots and the like. Be forewarned, Web surfing and file downloading may be a little slower using VPN.
Harden Your Data DefensesAntivirus software and security suites are great, but you should also harden your data defenses in case someone gets through. In Windows, hide folders that contain sensitive data—it's easy to do: just right-click on the folder and select "Properties" and then under the "General" tab, set the folder's attributes to "Hidden." You will still be able to see the folder, although the folder icon will appear transparent. Then go into Windows Explorer. Click on the "Organize" button and then select "Folder and Search Options" to launch Folder Options. Click on the "View" tab and then select "Don't show hidden files, folders and drives." This is of course, not the strongest of security defenses, but it's a way to make it that much harder for intruders to readily see find sensitive data. Also consider encryption. Cepherix LE will create a virtual drive with 128-bit encryption on your hard drive that can hold up to 25GB. TrueCrypt, can encrypt an entire hard drive, just don't forget the password! Folders can be password protected in Windows natively, once the "Turn on password protected sharing"setting is enabled within "Network and Sharing Center"in Windows 7.
Avoid Banking Via Public HotspotsThis is less a technical tip than a behavioral one: if at all possible, avoid doing more serious tasks like bill paying, accessing your bank account, or using your credit card when connected to public Wi-Fi. Save those transactions for when you're connected safely to your home wireless network. Because that's secure, right? Take a look at How To Setup Your Home or Small Business Network for pointers on securing your home Wi-Fi network.
Use HTTPS and SSLMany websites use HTTPS and SSL to make your connection to them more secure-both are protocols that provide encrypted communications. For example, you can access Gmail via http://www.gmail.com or https://www.gmail.com. The latter is a more secure option. Most financial institutions use SSL on their websites. In Internet Explorer 8, the address bar turns green and display a padlock when you access a secured website—other browsers offer similar notifications.
Remove Sensitive Data From Your LaptopConsider leaving home without it. If possible, remove sensitive data like spreadsheets, bank files, or documents with a social security number from your laptop you travel. Leave them on your home machine. If it's must access that data, consider storing it on a NAS device that you can access from the road. That way you can get to your data but not have it reside on a machine that you connect to public hotspots. For detailed information on how to select a NAS, read How to Buy a NAS Device. If you don't want to spend money on a NAS, you can always access your home machine remotely, using an app like LogMeIn Pro2.
Use a FirewallTurn on Windows Firewall, and use the setting for public networks for more secured access. There are several robust firewall third-party solutions out there too, such as ZoneAlarm Free Firewall 9.2, which protects against hack attacks, controls how programs access the Internet and offers identity protection. You should have a firewall enabled whether you are home or on the road, but it's especially wise to turn it on when connecting to public hotspots.
No comments:
Post a Comment