Public WiFi: Risks & Safety

TL;DR

Public WiFi is convenient but risky. Use a Virtual Private Network (VPN) to encrypt your connection, avoid sensitive transactions, and ensure your device’s firewall is enabled. Regularly update software and be cautious about connecting to unknown networks.

Understanding the Risks

Public WiFi hotspots – in cafes, airports, libraries etc. – often lack proper security. This means anyone else on the network *could* potentially see what you’re doing online. Here’s a breakdown of common threats:

• Man-in-the-Middle Attacks: Hackers can intercept data sent between your device and the website you’re visiting.
• Unencrypted Networks: Data transmitted on unencrypted networks is visible to anyone using packet sniffing tools.
• Evil Twin Hotspots: Fake WiFi networks set up by attackers to steal your information.

How to Stay Safe on Public WiFi – Step-by-Step

1. Use a Virtual Private Network (VPN): This is the single most important step. A VPN creates an encrypted tunnel for your internet connection, protecting your data even on unsecured networks.
   • Choose a reputable VPN provider with a no-logs policy.
   • Install the VPN app on all your devices.
   • Always connect to the VPN *before* joining any public WiFi network.
2. Enable Your Firewall: A firewall acts as a barrier between your device and potential threats.
   • Windows: Ensure Windows Defender Firewall is enabled. You can check this in Control Panel > System and Security > Windows Defender Firewall.
   • macOS: Go to System Preferences > Security & Privacy > Firewall tab, and ensure it’s turned on.
3. Look for HTTPS: Always check that websites you visit use HTTPS (Hypertext Transfer Protocol Secure). This encrypts the data transmitted between your browser and the website.
   • Look for a padlock icon in your browser’s address bar.
   • Avoid websites without HTTPS, especially when entering personal information.
4. Disable File Sharing: Turn off file sharing on public networks to prevent others from accessing files on your device.
   • Windows: Go to Network and Sharing Center > Advanced sharing settings, and turn off file and printer sharing for public networks.
   • macOS: Go to System Preferences > Sharing, and uncheck any shared folders while connected to a public network.
5. Avoid Sensitive Transactions: Don’t access online banking, email accounts, or make purchases on public WiFi if possible.
   • If you *must* perform sensitive transactions, use a VPN and double-check the website’s security (HTTPS).
6. Be Wary of Network Names: Double-check the network name with staff before connecting. Attackers often create networks with similar names to legitimate hotspots.
7. Turn Off Auto-Connect: Prevent your device from automatically joining unknown WiFi networks.
   • Windows: Go to Settings > Network & Internet > Wi-Fi, and turn off ‘Connect automatically’.
   • macOS: Go to System Preferences > Network > Wi-Fi > Advanced, and uncheck ‘Automatically join this network’.
8. Keep Software Updated: Regularly update your operating system, browser, and antivirus software. Updates often include security patches.
   • Enable automatic updates whenever possible.

Checking Your Connection (Advanced)

You can use command-line tools to check your IP address and DNS servers while connected to public WiFi, which can help identify potential issues.

• Find Your Public IP Address:

  curl ifconfig.me

• Check DNS Servers (Windows):

  ipconfig /all

  Look for the ‘DNS Servers’ entry under your WiFi adapter.

• Check DNS Servers (macOS/Linux):

  nmcli dev show | grep IP4.DNS