Tech Made Simple

Hot Topics: Holiday Shopping & Gifts | 2014 Best iPhone Apps & Android Apps | Best TVs Under $500 & Under $1,000 | Apple iPhone 6

Use It

author photo

How to Protect Your Privacy on Public WiFi Networks

by on October 29, 2014
in Computers and Software, Computer Safety & Support, Tips & How-Tos :: 7 comments

So you're at your favorite coffee shop and have hopped on to the free WiFi with your tablet to check your social networks, read the latest news, and maybe take a quick peek at your bank balance while you're enjoying your latte. We're so used to having Internet access whenever and wherever we need it that we don't often stop to consider whether logging into a public network is safe.

To find out just what the risks were, we consulted Con Mallon, a mobility expert with Symantec. "For lot of people, the first thing they do when they wander into a coffee shop or hotel lobby or the airport is to flip on their WiFi and try to find a free hotspot rather than use your own data plan or buying time from a hotspot," Mallon says.

There are three major ways these free, open hotspots could get you into trouble, he explains.

The risks of free WiFi

Using public WiFi isn't unlike having a conversation in a public place: Others can overhear you. If you don't take precautions, information your devices send over a public WiFi network goes out in clear text — and anyone else on the network could easily take a look at what you're doing with just a few simple software tools.

Someone spying could easily pick up your passwords or other private information. If you use the same password on multiple sites, that could be a big problem. Mallon reports that this is the biggest concern with public hotspots.

The next potential problem is what Mallon calls a honeypot. Thieves might set up their own WiFi hotspot with an unassuming name like "Public WiFi" to tempt you to connect so they can grab up any data you send. These are easy to set up without any kind of special equipment — it could be done just using a laptop or smartphone — so you could run into them anywhere. Mallon couldn't say just how common these honeypots are, but news reports about honeypots pop up once or twice a year.

Finally, using public WiFi puts you at risk for session hijacking, in which a hacker who's monitoring your WiFi traffic attempts to take over an open session you have with an online service (like a social media site or an email client) by stealing the browser cookies the service uses to recognize who you are. Once hackers have that cookie, they can pretend to be you on these sites or even find your login and password information stored inside the cookie.

How to stay safe on public WiFi

Before you connect, be sure you know whose network you're connecting to so you don't fall prey to WiFi honeypots. If you're not sure what the public network at a business is called, ask an employee before connecting.

Check to make sure your computer or smartphone is not set up to automatically connect to unknown WiFi networks — or set it to ask you before connecting — so you're sure you know what you're connecting to when you connect.

Make sure to connect to websites via HTTPS, which encrypts anything you send and receive from the website. While a VPN service encrypts everything you send, HTTPS ensures that communication to and from a particular website is secure. To verify if you're connected via HTTPS, look at the address bar of your browser window; you should see "HTTPS" at the beginning of the web address (or, on some web browsers, a lock icon).

To encrypt all of the data you send, use a VPN service. Anyone trying to steal your data will see only encrypted data that they can't get into. There are many services that can do this, including Witopia.net and StrongVPN.com. VPN services charge a fee for their use, with pay packages ranging from day passes to year-round protection.

Whenever you can, use two-factor authentication, which requires both a password and a secondary code that changes regularly, for websites. This makes it very difficult for hackers to get at your accounts because even if they can get your password, they won't have the secondary code. Though not all services support it, many popular sites offer this level of security including Google, Facebook, Twitter, LinkedIn, Apple and Microsoft.

Make sure your computer isn't configured to share access to files. When you're at home, it may be convenient to keep things in a folder you share with other members of the household, but that's less safe when you're connecting to public WiFi.

Disable sharing in: 

  • Windows 8: Go to Control Panel > Network and Internet > View network status and Tasks > Change advanced sharing settings > Turn off file and printer sharing > Save changes.
  • Windows 7: Go to Control Panel > Network and Sharing Center > Change advanced sharing settings > Home or Work > Turn off file and printer sharing > Save changes.
  • Mac OS X: Go to System Preferences > Sharing and be sure that File Sharing doesn't have a check mark by it.

Good luck, and safe browsing!

[This feature has been updated on 10/29/2014]

[woman with laptop and secure browser images via Shutterstock]

Subscribe to the Techlicious Daily Email!

Get the Techlicious Guide to Great Photography as your FREE gift!

Discussion loading

gravatar

Norton's Hotspot Privacy is not a VPN anymore

From Ernesto Colina on November 04, 2013 :: 10:35 am

I used to have Norton’s Hotspot Privacy for more than a year, until somebody at Symantec decided to change providers and now Norton’s Hotspot Privacy has become nothing more than a bad and expensive proxy service, that means, it will only “disguise” your IP address and nothing more, and they do it in a terrible way that with services like http://ipaddress.com, it is possible to discover who you are.

I put a post about this in the Norton Community :

http://community.norton.com/t5/Other-Norton-Products/ATTENTION-Norton-Hotspot-Privacy-is-not-a-VPN-anymore-and-is/td-p/1030031
So look somewhere else and get a real VPN.

Reply

avatar

It is a VPN, but not an anonymizer

From Suzanne Kantra on November 06, 2013 :: 6:14 pm

We spoke to security representatives at Symantec and they assured us that the service does fully encrypt communications between your device (phone, tablet, or laptop) and the Norton Hotspot Privacy proxy server. So it is a VPN. However, it does not anonymize your IP address as some other VPN services do.

According to Symantec, Norton Hotspot Privacy is specifically focused on protecting against hotspot snooping, so IP masking is unnecessary. Also, some sites reject connections from anonymous proxies, which could affect some users if this were implemented (though, this is a pretty limited risk, in our opinion).

If anonymity is your goal, you could use hidemyass.com or another similar service while using Norton Hotspot Privacy. Or, invest in a different VPN solution.

For a more detailed recap of the various options, see our article on anonymous web browsing here: http://www.techlicious.com/tip/how-to-browse-the-web-anonymously/.

Reply

gravatar

Disabling file and printer sharing in Windows

From Bruce Epper on November 05, 2013 :: 6:52 pm

This is an unnecessary step if you’re connected to the hotspot properly in the first place.  With the file and printer sharing option enabled in the OS, when you connect to a home/private network others will be able to share your files and printer.  If you are connected to a public network, the file and printer sharing is automatically disabled anyway.  The option for a private/home or public network is selected the first time you connect to any new network, so as long as you made the right choice there, going through the process of disabling file and printer sharing globally does not provide any extra protection.

Reply

gravatar

not taking your own advice

From Justine O'Toole on October 30, 2014 :: 12:39 pm

in your advice article re security when using Wi-Fi Hotspots you mention to look for the httpS://www..
yet, your very own page is simply http://www.techlicious.com - can I assume from that: It’s Not Secure??

Reply

avatar

Yeah, that's not clearly worded in the article

From Josh Kirschner on October 30, 2014 :: 3:31 pm

Accessing websites via https is only critical if you are passing personal information back and forth that you wouldn’t want intercepted. For content sites, like Techlicious, there really is no need for https and having it can slow down site access.

If you were to use the Facebook login button to comment on our site, you’ll notice that it does create a secure https connection for the login process.

Reply

gravatar

excellent reply

From Justine O'Toole on October 30, 2014 :: 5:01 pm

makes perfect sense - Thank You ((-;

Reply

gravatar

VPN

From Paul on October 31, 2014 :: 5:55 am

I’ve had good luck with Surf Easy and Zen Mate.
Both are free.

Reply

© 2014 Techlicious LLC. :: Home | About | Meet the Team | Sponsorship Opportunities | Newsletter Archive | Contact Us :: Terms of Use | Privacy Policy

site design: Juxtaprose