Why Free WiFi Could Be Bad for You and How to Protect Yourself?
Would you share this Article with others?
Great example of that is the operation called Darkhotel APT. Basically it was an intelligent virus that stole a lot of sensitive user data. Many people fell victims of the mentioned malware including CEO's of big corporations who used free WiFi spots. According to statistics, more than 60% of all WiFi spots have no protection whatsoever. This makes it easier to connect to such network. As a side effect, however we have the vulnerability of such network towards hacker attacks.
Experts state that great percentage of such malware infects device of hotel residents over WiFi in less than 2 seconds. CEO's and businessmen who travel to Asia regularly fall victims of such fraudulent schemes.
Why free WiFi is a risk?
A WiFi network that does not have a password will most likely have no protection like firewalls or closed ports. This means that an attacker can hypothetically identify your IP address and break into your device using standard system administrator tools.
The main dangers are:
- Malicious software (e.g malware, spyware, adware) can be installed on your PC/tablet/smart-phone. Intruders utilize Trojan viruses that disguise themselves such legitimate programs (e.g Windows Messenger, Adobe Flash update, Google Toolbar, etc). It asks for administrative privileges to install. Once you click “OK” and allow it to install this malicious program will start searching for your corporate info, bank/credit card accounts data and other valuable info.
- Hacker can penetrate your free WiFi Internet traffic. This can be easily achieved considering the fact that WiFi network is not protected with the password and has all ports opened for incoming connections. When access to your device is acquired the third party will start logging your Internet traffic and, as a result will have full access to your browsing history and other info related to it.
- Public WiFi network gets an evil twin to steal your data. An attacker creates a completely different WiFi network with a name similar to your hotel's network (e.g Hotel_wifi vs Hotel_wifi_new). You only have to connect to that malicious network and all your traffic including passwords and codes for finance operations will go through that network (which gives the third party all the info they need).
- Phishing Attacks. This is also one of the popular fraudulent schemes. Basically, a hacker creates a clone of the popular Internet website that has a look a feel of the original with slight changes. Once the users enters such site an intruder would try to convince them to enter their passwords and other data using methods of psychological persuasion and forms that you use to enter same details on the regular basis.
- Malicious Technology. Security experts shared info about how this process actually works. It turns out that the virus is integrated into the HTML code. This gives the virus an ability to redirect the user's web browser to certain address, in this case to a Trojan virus. Hackers have integrated malicious pieces of software on the number of web resources. Hotels registration portals were among them until people in charge have taken necessary measures and secured their web sites.
Use Free WiFi and stay protected
Regular Internet users (even if they're not CEO's) also wouldn't want to expose their private data like photos and documents. It is needless to say that they may have their credit card details stored on their phone as well.
Universal Tips to Secure your Free WiFi connection:
- Do not connect to a network automatically
- Restrict public access to your apps, files and folders
- Do not perform any finance-related operation while connected to a free/public WiFi
- Make sure the name of your network is exactly the same your hotel personnel provided
- Use VPN
Secure VPN. What to choose?
Currently there are many VPN providers on the market. You can also find many free options. But be careful with free VPNs. Some VPN's may not offer reliable encryptions, other may log your usage data. Not all of them are safe, however. There are a lot of advices on how to choose a VPN provider.
Published by: Privatoria
Note: Some of the names, addresses, email addresses, telephone numbers or other information in samples on this website may have been impersonated or spoofed.
Please share what you know or ask a question about this article by leaving a comment below. Check the comment section below for additional information, if there is any. Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: email@example.com. And, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent. Also, to quickly find answers to your questions, use our search engine.
You can help maintain Online Threat Alerts (OTA) by paying a service fee. Click here to make payment.
Comments, Questions, Answers, or Reviews
To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews. Also, remember to keep comments, reviews, answers respectful.
Show More Comments (1)
Write Your Comment, Question, Answer, or Review
Write your comment, question, answer, or review in the box below to share what you know or to get answers. NB: We will use your IP address to display your approximate location to other users.