With the rise of remote and flexible work policies, many employees have adopted cafes, libraries, and other public spaces as alternative work environments. While these settings offer a refreshing change of scenery, using unsecured WiFi networks without proper security protocols can unintentionally put your business's cybersecurity at risk.
Prioritising secure practices and enforcing cybersecurity guidelines in these secondary work locations is essential for safeguarding your organisation’s data and systems.
To support you in ensuring good practice, we’ve compiled our expert recommendations connecting with public WiFi, whether it’s on the train or in your favourite coffee shop. By following these recommendations and learning of the potential risks, you can stay safe online, wherever you choose to work.
What does “Unsecured Network” Mean?
An unsecured network is a public WiFi network that does not require a password or encryption to connect. This means anyone can join the network without any authentication, making it vulnerable to hacking and cyberattacks.
The most common places you might encounter unsecured networks would be public environments such as coffee shops, airports and hotels. Basically anyvenue which intends to provide convenient and quick internet access for users.
You may also encounter free WiFi on public transit, such as trains, where many individuals will log on during their morning commute.
While it can be tempting to hop onto these networks to take advantage of some free WiFi, a general lack of security measures makes these hotspots easy for hackers to intercept sensitive information- including passwords, credit card numbers, and personal information.
Be mindful of your usage, and how exactly you browse when connected to these networks.
Risks of using public WiFi networks
Using public networks, despite the convenience offered, can be incredibly risky if users are improperly educated. We’ve listed some of the most common risks associated with public WiFi usage, to emphasise the importance of caution when connecting to unsecured WiFi.
Unencrypted networks
Unencrypted networks transmit data in plain text, making it easy for hackers to intercept and read sensitive information. This includes passwords, credit card numbers, and personal data. Hackers can then use specialised tools to exploit user data.
Malicious hotspots
Malicious hotspots, also known as rogue access points, are fake WiFi networks set up by hackers to trick users into joining the network. Once connected, hackers can capture sensitive data, including passwords and credit card numbers. These hotspots can also be used to distribute malware and viruses.
How can I work online safely in public spaces?
Despite the many risks posed by unsecured WiFi, it is still possible to work safely in public locations.
Disable File Sharing and Airdropping
“File Sharing” exposes your folders to others on the network. While this can prove beneficial in private working environments- such as your company’s office- enabling sharing can make you vulnerable to exploits on an unsecured WiFi network.
By disabling the ability to share files, you can protect your information from being accessed by cybercriminals.
This advice also extends to Mac’s Airdropping, which poses similar risks when used publicly.
How can I disable file sharing?
For PC: Go to the “Network and Sharing” centre, then change “Change Advanced Sharing Settings”. From there, you can turn off file and printer sharing.
For Mac: Go to system preferences, then to “Sharing”, and unselect all options.
Be cautious of the networks you are connecting to
To prevent being victimised by inauthentic hotspots, always review the network options available before connecting your device. While it can be difficult to spot a malicious hotspot, being mindful of the networks you are joining can aid in preventing exploitation.
For confirmation, ask an employee of the public venue for the name of the network. If you feel unsure about a network, it’s probably best not to connect.
Read the Terms and Conditions before signing up for WiFi
Many public WiFi networks- particularly those belonging to large corporations such as Starbucks or Costa, will ask users to 'sign up' in order to access the network.
While these sign-up forms of WiFi offer a more secure network, it is important to review these terms and conditions before giving away any personal information.
Consider using a VPN
A Virtual Private Network, otherwise known as a VPN, is the most foolproof way to secure your data when using public WiFi. VPNs work to encrypt the data by creating a secure connection between a user's device and the remote server owned by a VPN provider. The connection masks the user's data and IP address, assuring privacy and protection regardless of the WiFi network.
Minimise accessing sensitive information.
If possible, minimise sharing any sensitive information when using public WiFi. Avoid financial transactions, entering credit card details, or inputting banking information while using public WiFi networks. Sensitive information such as banking details should ideally be accessed on a home network or secured work server.
Be mindful of the websites you choose to access when on a public server- is this information you'd be comfortable with others seeing?
Log out of communal devices
If you are using communal devices- such as a library desktop or rented laptop- it is imperative you log out of all devices once you have concluded your session. While it may seem an obvious suggestion, complacency when ensuing login security can have significant impact on your online safety. Remaining logged in on a public device can lead to data breaches, exploitation.
In some instances, hackers will download malicious software onto the device, exploiting you and all connected accounts.
Conclusion
Correct network usage can protect unsuspecting users from exploitation by bad actors, ensuring safe and regulated internet connection in public spaces. Whether you're taking a train, or changing up your day by hitting your favourite local coffee shop to work, you must take proper precautions when working in public locations.
By being cautious of the risks unsecured WiFi poses, and keeping in mind the suggestions above, you can protect your devices and data from being exploited by malicious actors.
Proactive cybersecurity for everyone with OnSecurity
For further information on how to protect your business from threats, visit our penetration testing page to see how OnSecurity can support you in strengthening your overall cybersecurity posture.
