Security Market Segment LS
Monday, 13 July 2015 15:09

Beware the hacker: Public Wi-Fi ‘inherently insecure’ Featured

By
Beware the hacker: Public Wi-Fi ‘inherently insecure’ Image courtesy of Stuart Miles, freedigitalphotos.net/images

Security firm F-Secure says a hacking experiment it conducted in the UK highlights the dangers of using public Wi-Fi which it claims is “inherently insecure”.

According to F-Secure, its hacking of three prominent UK politicians, with their permission, has demonstrated that public networks open up a range of attack options for malicious hackers.

The F-Secure team  -  which worked with penetration expert Mandalorian Security Services and the Cyber Research Institute to conduct the test - accessed one politician’s email account despite his strong password.

Adam Smith, Country Manager, ANZ, F-Secure, said, “Public Wi-Fi is inherently insecure. It took the team less than 30 minutes to hack all popular devices and, in some cases, it took less than five.”

“The hackers collected detailed browsing history, VoIP phone calls, email accounts, all email history and contacts, online financial services, and social media accounts.

“Once an account has been hacked, it is relatively easy to access other accounts, such as Gmail and PayPal, as people tend to only use a couple of passwords. Cracking an email account is valuable because people often store other account and password details in their email.”

Smith said the team intercepted and recorded a Voice over IP phone call made by another politician from his hotel room, using technology freely available on the Internet and easy to master.

A third politician was browsing the Internet in a café when the ethical hackers sent her an email telling her to log back into her Facebook account. When she did so, the hacker obtained her login details and accessed her Facebook account.

Smith says “Accessing a Facebook account may seem trivial but a smart attacker knows that the information they can gain from Facebook is useful.”

“For example, by knowing your interests, they can craft a phishing email that you are more likely to open. Alarmingly, some people use similar passwords for their Facebook account and, say, their PayPal account, which leaves them open to financial losses.”

Smith warns that once a hacker has accessed personal accounts, the next step is to use that information to access business emails and corporate networks. “At this point the risk is no longer just personal, the person’s employer is now likely to be attacked.

“Public Wi-Fi is a fantastic service and people shouldn’t feel afraid to use it. They should simply take steps to protect themselves and the companies they work for. I believe all businesses should mandate a security policy for employees using public Wi-Fi.”

Smith says F-Secure has identified five tips to stay safe on public Wi-Fi. Here they are:

1.    Use a virtual private network (VPN).

These can be downloaded as an app for phones and tablets.

F-Secure’s Freedome VPN encrypts all data travelling from the device to the network. This means hackers can’t steal anything useful. Simply turning on the VPN gives users the best protection possible to stay safe over public Wi-Fi.

2. Turn off sharing.

If your device is set up for sharing, disable these settings before logging into a public Wi-Fi network.

3. Control your connections.

Many devices are set up to automatically connect to wireless networks but you can turn this off. This protects you from malicious networks set up specifically to steal your information.

4. Use two-factor authentication.
 
This type of authentication most commonly involves a code sent to your mobile phone so that a password alone is not sufficient to log into accounts such as email or banking.

5. Turn on your firewall and use anti-virus software.

This monitors incoming and outgoing connections and can provide a first alert if your system is compromised.

Read 4908 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here

SONICWALL 2022 CYBER THREAT REPORT

The past year has seen a meteoric rise in ransomware incidents worldwide.

Over the past 12 months, SonicWall Capture Labs threat researchers have diligently tracked the meteoric rise in cyberattacks, as well as trends and activity across all threat vectors, including:

Ransomware
Cryptojacking
Encrypted threats
IoT malware
Zero-day attacks and more

These exclusive findings are now available via the 2022 SonicWall Cyber Threat Report, which ensures SMBs, government agencies, enterprises and other organizations have the actionable threat intelligence needed to combat the rising tide of cybercrime.

Click the button below to get the report.

GET REPORT!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

BACK TO HOME PAGE
Peter Dinham

Peter Dinham - retired in 2020. He is a veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments