Why You Need a VPN When Using Public Wifi

Posted on by Jim Lastinger Leave a comment
Why you should always use a VPN on public Wifi
It’s no secret that public Wi-Fi isn’t safe. You can be targeted by hackers or even government agencies. Your information is at risk of being stolen and used against you. That’s where a VPN comes in handy. Read on to learn how a VPN will protect all your data from prying eyes so that you can browse with peace of mind.

The Risks of Public WiFi

Public WiFi networks are convenient, but they come with risks. Without a virtual private network (VPN), your data is vulnerable to theft and other attacks. Public WiFi networks are also a favorite of cybercriminals. By spoofing the signal of a legitimate network, they can trick unsuspecting users into connecting to their malicious hotspot. Once connected, the criminals can steal passwords, financial information or even install malware on the user’s device.
Here are some of the risks you take when connecting to public WiFi:

1.Personal Information Theft

The theft of personal information is one of the most severe and prevalent dangers of using publicWiFi. If a hacker obtains access to your computer or other personal devices through a hacked public WiFi connection, they could have free rein over everything saved on them. For instance, if they get access to your login details and log into your bank’s or credit card’s website, well… you can see how that would be a problem.

2.Cyber Attack on Businesses

Mobile users on the road for most of the day may connect to public WiFi to check their emails, download files, view customer information, and perform other tasks requiring a network connection.
Most companies/businesses have security measures to minimize the danger of connecting over WiFi. However, there are still dangers if you or your coworkers need access to a company network via a public connection. Because WiFi networks are, by their nature, open and frequently monitored, it isn’t easy to know what information they might collect. There may be several reasons why you’re having trouble connecting to the internet. For example, you may be restricted because you’re in a public place or locked in your computer. You never know what data the WiFi provider could keep track of. The WiFi provider might log everything you do on the network and sell your data to marketers.

3.Malware Distribution

A more serious concern that may come about when using public WiFi is the installation of malware on your device. Someone with malicious intentions on the same public WiFi as you may install malware onto your computer if it is not kept secure. Bad actors could use the hotspot itself to drop one or more of these threats on your machine.

4.Packet Sniffing

When you send and receive data over the internet, anyone connected to the same WiFi network as you can see what you communicate with a packet analyzer or packet sniffer. These tools enable inspection of everything transmitted over the WiFi network unless encrypted. Tools like these are not inherently bad. You can utilize them for good or bad purposes, just like any other tools. Packet sniffers allow network specialists to diagnose wireless network connection and other performance difficulties, but they also enable hackers to see all of the data sent through that WiFi network.

5.Hijacking of Sessions

Another common type of WiFi security breach is a Man-in-the-Middle (MitM) attack. In this scenario, an adversary snatches information about your computer and its connection to websites or other services.
The attacker can then set his computer to mimic yours and take control of the connection after obtaining that data. Hacking into your personal computer and gaining access to online accounts is only one of several possible ways a hacker can control your information. For instance, after you sign in to your bank’s website, a hacker may steal your connection. Since your computer is already connected, the attacker would have access to everything on the banking website that you would have access to.

How to Use a VPN to Protect Your Privacy and Security on Public WiFi

Public WiFi can be a goldmine for hackers looking to steal your personal information. However, you can protect yourself from these threats and keep your data safe using a VPN. A VPN works by creating a secure tunnel between your device and the internet. This secure, encrypted tunnel protects your data from being intercepted by third-party hackers.
Here are a few best practices for using a VPN on public WiFi:
  • Use a VPN on all of your devices, including smartphones and laptops, that will use public WiFi
  • Choose a VPN that is reliable and has strong security features
  • Make sure the VPN is active and connected anytime you’re using public WiFi
  • No streaming or downloading large files while connected to public WiFi networks
  • If your VPN connection drops, immediately disconnect from the public WiFi network or utilize the VPN’s killswitch feature
By following these simple tips, you can keep yourself safe and secure when using public WiFi. Remember, it’s always better to be safe than sorry.

How a VPN Protects You on Public WIFI

So how does a VPN actually making it safer to use a public WiFi network? Here are a few ways:
  • Encryption of your data. A VPN will encrypt your data, ensuring that it is safe from prying eyes.
  • Protection against spying & data theft. By using a VPN, you can prevent others from spying on your activities while using public WiFi. If they do get access to your data, everything will be encrypted, and therefore unintelligible and unusable.
  • Avoiding malware and viruses. A VPN can help to protect you from these threats by limiting the ports available to connect to your device, having a firewall in place, and strongly filtering anything coming in.

Conclusion

VPNs are an essential tool for staying safe and secure online — especially when using public WiFi networks. They encrypt your data so that it cannot be read by anyone else, protecting your privacy in the process.
Do you use a VPN anytime you’re on public WiFi? Do you have any additional tips for using public Wifi? Tell us in the comments!

Why You Should Consider Using a DD-WRT Router

Posted on by Jim Lastinger 4 Comments
Wi-Fi Security

DD-WRT is third-party firmware designed to upgrade and enhance the functionality of OE wireless internet routers by replacing the router’s original, integrated firmware. The big question is, “Why would you want to replace the original firmware?”

The problem with the original firmware is that router manufacturers often intentionally limit their product’s full capabilities. The limitations are designed into the preinstalled firmware. DD-WRT does not impose those limitations, allowing your router to become powerful enough to rival those used in enterprise IT environments. Using a DD-WRT router unleashes a variety of ways to realize enhanced performance and functionality. Even better, it doesn’t cost you a dime.

Benefits of Using DD-WRT

It’s one thing to have expanded power, but the real benefits are derived from knowing how to harness it for your benefit.

If we were to list all the benefits you can enjoy from using DD-WRT, the list would be longer – much longer than we have space or time to list here. So, is a short list of what we consider the top features and benefits of DD-WRT:

  1. IPv6 support. With IPv4 addresses becoming increasingly scarce, you’ll appreciate DD-WRT’s built-in IPv6 support.
  2. Advanced Quality of Service controls are available on some DD-WRT builds.
  3. A highly configurable and very powerful firewall that is based on iptables firewall construction. You can easily edit the iptables firewall via DD-WRT’s interface.
  4. DNS controls such as DNSmasq, which allows simplified DNS configuration behind the firewall and makes host-name lookup faster. You also get support for DNS providers such as No-IP, TZo, DynDNS and others.
  5. The access point is visible only to your wireless clients, preventing inadvertently giving access to each client’s shared files.
  6. Easy access to multiple source access-control solutions such as WiFiDog, HotSpot System, ChilliSpot and others.
  7. Extensions, extensions, and more extensions. You can add functionality far beyond the original limitations of the router, such as external USB connectors.
  8. DD-WRT plays well with VPN. Instead of configuring each of your devices to connect to a VPN (*ahem* Ghost Path) you can configure the router itself to connect over VPN, protecting all devices on your network.

The best thing is that DD-WRT is FREE! Well, at least for now.

Securing Your Entire Home

Because your home network gains the power of an enterprise-level router, you also get better security. No more neighbors stealing your Wi-Fi connection!

For one, DD-WRT ignores unrequested packets that go through your WAN port, making it difficult for a hacker to even know that you have a network there. It even provides better protection against Trojans, which do not pass through your Internet connection, hence, bypassing your firewall.

You gain a range of security protocols to make your Wi-Fi secure. There’s WPA that even supports RADIUS, there’s TKIP, AES and a combination of both. There’s WPA2 and WEP. You can choose the safest options: WPA + AES, WPA + TKIP + AES. Or, if you are feeling generous, you can disable these protocols and give Wi-Fi access to those who can see your network. Setting up security for your DD-WRT router is very easy, using its Web-based interface.

Again, DD-WRT’s built-in VPN connectivity allows you to automatically send all your network traffic over the VPN, greatly increasing security.

Need to Know

There are some things that you should know before trying, installing and using DD-WRT firmware for your router. First, using DD-WRT invalidates the manufacturer’s warranty support for your router. This is no different than what typically happens when you make performance-enhancing changes to your car. You will not be able to call Linksys, D-Link, NETGEAR, and others, if something were to go wrong with your router. Be sure to research the ramifications as well as the benefits before you modify your stock firmware with DD-WRT.

Second, it is entirely possible that your router will be bricked, turning it into a lovely paperweight. As with modifying anything, there is always the potential for suffering other unintended consequences. So, again, do your homework and weigh the risks before installing DD-WRT.

Third, manufacturers aim to make it easier for non-technical users (un-geeks and anyone over 55) to tinker with and install their routers.

The grass may be greener on the DD-WRT side of the fence. Just be cautious when scaling the top of the fence and be especially careful of what you land in.

Analyzing the 1000 Most Common Wi-Fi Network Names

Posted on by Jim Lastinger 4 Comments
Wi-Fi SSID

I recently came across a list of the 1000 most commonly used SSID’s and thought it would be fun take a quick look at it. If you didn’t already know, SSID is the technical term for the name of your wireless network.

Here are some of the most interesting things I gleaned from the list. The percentages below represent how often the SSID shows up in the total list of SSID names survey, not just the top 1000 SSID’s.

  1. No name, or a hidden name, is really popular. Over 2.3% of the SSID’s examined had no name, a hidden name, or something similar.
  2. Routers that come with a predefined network are popular. AT&T’s Uverse routers are a good example and come with a pre-defined wireless network that includes a name like “2WIRE199”.
  3. Netgear also sells routers that come with predefined network names. “NETGEAR00” through “NETGEAR99” are all names that make it into the top 1000.
  4. “default” (0.6%) and “home” (0.3%) are used quite commonly
  5. Hotels, such as “Marriott_Guest” (0.01%), “Hyatt” (0.01%), “hhonors” (0.06%), and “laQuinta” (0.01%) make the top 1000.
  6. Among SSID’s named after people, “Alex”, “David”, “Mike”, and “John” lead the way.
  7. My personal favorites from the top 1000: “pretty fly for a wifi”, “skynet”. “boobs” was not in the top 1000, sadly.

Why You Shouldn’t Be Using a Common SSID

If I can find a list of the 1000 most commonly used network names then I know that the bad guys can too. Most of the time people allow network names to be broadcasted from the router, but a higher-security option is to not broadcast the name and require that users connecting be able to specify the network’s name and key. If you don’t broadcast your SSID then you certainly wouldn’t want to compromise that bit of security by using a frequently used SSID.

Now, let’s talk about Uverse for a second. People know how Uverse routers are setup generally. They know the number of characters in the network key and the character-set. Knowing these details makes it fairly easy to brute-force guess the network key. I believe that Uverse routers use only numeric characters in the network key… how much simpler could it get? If you use Uverse at home then you should immediately change your SSID and network key away from the defaults. It’s not hard to do and will greatly increase your security at home.

Photo Credit: woodleywonderworks via Compfight cc