Cygale Pennant | Public Wi-Fi – to use or not to use?

Public Wi-Fi is a staple in our fast-paced society. We have all used it, at the park, on the bus, at restaurants, hotels and at the airport. Using these free Wi-Fi hotspots is extremely convenient but, how safe are they?

Meet Nathaniel, a wealthy and successful entrepreneur who is quietly au fait with the niceties and conveniences associated with the digital world. He is also equally aware of the dangers that lurk within the cyberworld and, as such, he treads that space cautiously.

He uses his smartphone to access his online banking only in cases of emergency, as for online shopping. He believes that is a task only to be done with the use of a desktop. He has memorised all the numbers on his credit and debit cards, as he believes these cards must be removed from one’s wallet only when absolutely necessary. Should you see him at a restaurant, rest assured, he will be paying with cash. Swiping these cards at a gas station is the ultimate sin; and he will stand in line at the ATM when the need for cash arises.

A month ago, Nathaniel travelled overseas. After many hours of travelling, he finally landed at the airport and quickly connected to the airport’s Wi-Fi hotspot – the next thing he realises is that millions of dollars are missing from his bank account.

Despite Nathaniel’s vigilance, what he did not know is that public Wi-Fi hotspots are not secure and can leave one susceptible to cyberattacks. While business owners believe they are providing a valuable service to their customers, the sad reality is that there is a likelihood that the security at public hotspots is either tenuous or non-existent.

RISKS OF USING PUBLIC WIFI

My colleagues at the Office of the Director of Public Prosecutions offered their insights on the use of public Wi-Fi. Deputy Director of Public Prosecutions Kimberley Dell Williams indicated that, until recently, without hesitation, she would connect to public hotspots. But this is a practice of the past as she is now more conscious of the irreparable damage that may result from a single click.

Crown Counsel Cindi-Kay Graham said she uses public hotspots in limited circumstances, for example, when she is unable to access mobile data through her service provider. While being aware of the risks, she pacifies her actions by not connecting for too long and turning off the Wi-Fi as soon as she is through browsing.

Some of the risks associated with using public Wi-Fi hotspots are:

1. Man in the middle (MITM) attacks

This is one of the most common threats. It is a form of eavesdropping where, when a computer makes a connection to the Internet, and data is sent from point A (the device) to point B (a website), vulnerabilities can allow an attacker to get in between these transmissions and read them. Hackers may also carry out MITM attacks using phishing emails. In these emails, they will impersonate a trusted source to trick an unsuspecting victim into sharing their private information.

2. Unencrypted networks

When using an encrypted network, a ‘secret code’ is sent between your device and the Wi-Fi router. As such, a key is required for viewing your information. Without this key, a third party is unable to see your information.

Most Wi-Fi routers have encryption turned off by default and must be turned on when the network is being set up.

Connecting to an unencrypted network makes it easier for a hacker to decipher your web traffic and use it for illicit activities such as MITM attacks.

3. Wi-Fi snooping and sniffing

Hackers sometimes purchase special software kits and devices that assist them with eavesdropping on Wi-Fi signals. These kits and devices allow access to your web traffic. For example, while checking your account balance, paying your bill or shopping online, the hacker, using a special software kit, tricks the website into thinking that you are the one that is browsing, and thereafter goes on a shopping spree with your saved debit or credit card information.

4. Malicious hotspots

These trick victims into what they think is a legitimate network because the name sounds reputable. For example, at the Down Under International Airport, while connecting to the airport’s Wi-Fi, you select DoWn UnDer InterNational Airport (Note the capital letters). Instead of connecting to the airport’s legitimate Wi-Fi hotspot, you have connected to a rogue hotspot and have inadvertently allowed cybercriminals access to your personal information.

How to stay safe

1. Avoid accessing sensitive information

Public Wi-Fi hotspots may be used for browsing online for direction. However, should you need to check your banking information or pay your bills, it is best to wait to use a more secure hotspot.

2. Use Virtual Private Network (VPN)

This gives you online privacy and anonymity by creating a private network from a public internet connection. Essentially, these mask your Internet Protocol (IP) address so that your online actions are untraceable.

While some VPNs are free, so as to guarantee the best security features, it is best if they are purchased. Also, research the vendor to ensure that you are purchasing your VPN from a trusted provider.

3. Turn off file sharing

If file sharing is on, your folders may be accessible to anyone connected to the same public network. This allows a hacker access to your private information.

4. Keep your operating system (OS) up to date

It is extremely important to always update your OS, as these updates often include additional security that safeguards your devices from Wi-Fi threats.

5. Remember to log out

When you are through browsing, ensure to log out of any services you were using. Also, check your settings to make sure your device will ‘forget the network’ and not automatically reconnect when you are next in range, without your permission. This can help minimise the time your device is connected to a public network.

6. Use antivirus software

Using an antivirus software protects access to your personal computer against viruses and spyware that gain information and relay it to other parties, resulting in annoying advertising pop-ups; or even tracks your keystrokes and captures your login credentials.

One online user says, “Happiness today is free Wi-Fi”. However, while we indulge, let us do so with the utmost caution and being fully aware, lest we find ourselves in a position similar to Nathaniel.

Cygale Pennant is crown counsel at the Office of the Director of Public Prosecutions, Cyber Crimes Unit. October is recognised as Cybersecurity Awareness Month. Send feedback to columns@gleanerjm.com.