If you have a smartphone or wireless device or laptop chances are you have used free Wi-Fi before. But what you may not know is that you are putting yourself at risk to be hacked.
Security measures against Wi-Fi attacks for users and businesses
1 – If you are business specify this attack in your Wi-Fi Acceptable Use Policy, making users aware of the possibility of these attacks
2 – (User)Avoid using free internet, they are usually honeypots or crime setups like the ones shown in this program.
3 – (User) Use a VPN service. This service will encrypt your traffic end to end preventing sniffing.
4 – (Business) Use of 802.1X Access Control mechanisms recommended for companies.
5 – (User) Disable your wireless adapter in your phone and computer when not browsing the net.
6 – (User) Never enter your personal details on these public available Wi Fi spots. Do not conduct credit card transactions either.
7 – For businesses use complex passwords for Access points management. Change defaults and disable default and non-used ports/services. Do not have open access to your Wi-Fi service.
8 – (User) For services like email or Facebook or iCloud, enable two factor authentication (TFA) Where user must receive a SMS with a code that must be input in addition to the password in order to access those services.
9 – For businesses. Make sure your Wi-Fi router or access points is using the latest WPA (Wi-Fi Protected Access) or WPA2. Do not use WEP (Wired Equivalent Privacy) as it is easy to break. It takes an average of 10 to 20 minutes to break into a WEP protected WiFi network.
10 – (Business) It is recommended to disable Wi-Fi Protected Setup (WPS) and setup router to WPA2 AES (128 Bit encryption).Filtering internal network by MAC addresses also mitigates possible man in the middle attacks.
No comments:
Post a Comment