Open WiFi networks are notorious for being a hackers playground. It's here where they try out new malware and hacking tools on unsuspecting users in an attempt to steal private info. Often times, these bad actors can setup their own "Free" Wifi Access Points so you'll connect to their network, making it all that much easier.

Estimates say that 81% of Americans use public Wi-Fi regularly. However, only 1% of Americans enable a VPN to enhance their security while on public networks. These are rookie numbers! The number of people using a VPN when connected to Wi-Fi is slightly higher in France (2%) and Germany (6%).

So, what information can they actually steal? Well, we have to admit, things have gotten slightly better since many websites began requiring SSL encrypted connections. However, there is still a plethora of things an attacker can see and steal. Here are just a few of many examples:

1. By monitoring DNS requests, they can see what sites you're visiting.
2. With DNS poisoning or a MitM (man in the middle) attack, they can redirect legitimate websites to a mirror copy under their control in order to steal login credentials.
3. They can inject code into websites (called hooking) that trick you into visiting websites you don't intend to or expose the "saved passwords" you have stored in your browser.
4. They can force your computer to try authenticating to a computer under their control which can expose your password hashes. With this, they can then try cracking these hashes to recover your computer password.
5. Trick your computer into thinking there's an update available and inject their own malicious copy of it, taking complete control over your computer.

I could go on and on. The gist is, you need to lock down your connection to the Internet. There's simply no better way than to use a VPN. The primary purpose of a VPN is to create a secure tunnel on hostile networks and I can't think of a more hostile network than open/free WiFi at a local coffee shop.

How does a VPN work? How does it protect my data?

The concept of a VPN is simple - create an encrypted tunnel between your device (laptop/cellphone/router, etc.) and a VPN server. While attackers may be able to see this tunnel on the network, they're unable to see or manipulate what's happening inside the tunnel. So, all the things they could have done before (from the small list we mentioned earlier in this article) have no effect on you.

What else can I do to protect yourself?

• Disable automatic WiFi connections. When automatic connections are enabled, your device will automatically connect to WiFi hotspots that match the name it's searching for. This could mean connecting to a hotspot controlled by a hacker.
• Don't log into sensitive accounts. When you're not using a VPN, a hacker on the same WiFi hotspot could be hijacking your connection or scooping up your login details.
• Disable file sharing. When not on your home network (or on a VPN) make sure file sharing is disabled. Otherwise, an attacker scanning for open file shares may find folders you've shared to other devices on your home network.
• AntiMalware and Firewall This is a given, but shoring up your firewall and making sure your anti-malware software is up to date is low hanging fruit but can make a huge difference.

We hope the information presented has been helpful. If you would like help with securing your system(s) or have questions, we're here for you. Just send an email to support@scoutsec.com!