05/ 30/ 2007
by Karen J. Bannan
Beware of unsecured wireless connections, which can open up your computers to hackers
You're on the road when it happens: An associate needs you to take a look at an important document. You have your laptop, so you duck into a coffee shop that advertises a Wi-Fi Internet connection. This scenario is a familiar one to many small-business owners, especially those who live life on the road. But next time, before you start up your PC, take note: You may be exposing yourself and your company to prying eyes--or worse, says Lisa Phifer, vice president of Core Competence Inc., a technology and security consultancy based in Chester Springs, Pa.
"Many public Wi-Fi hotspots are wide open, meaning that they do not encrypt data sent over the air or prevent users from attempting to access each other's computers," she explains. "This means that someone sitting near you can eavesdrop on the messages you send and receive or try to access open file shares on your laptop." They can also steal passwords, credit card numbers and other sensitive data.
The problem is a pervasive one. For example, one recent Core Competence study found that more than 33 percent of hotels and free Wi-Fi hotspots tested were completely bereft of security. So what can you do to minimize risk?
Safeguard your computer. Make sure you're running the latest Wi-Fi card software and patches, Phifer says. Also, turn off file and printer sharing on your Wi-Fi settings.
Connect with caution. Be choosy about the networks you connect to and ask someone who works at the business to verify the name of the network. Once you connect, restrict the data you're sending and avoid actions--like online banking or shopping--that require you to enter passwords, Social Security numbers, credit card numbers or other sensitive data.
Stick with spots that care about security. Whenever possible, connect only to hotspots that provide Wi-Fi security, called WPA (Wi-Fi Protected Access), Phifer says. "This protects messages sent over the air and guarantees that you have actually connected to the legitimate hotspot, not an attacker pretending to be a hotspot." T-Mobile, found in Starbucks coffee shops, Borders bookstores, FedEx Kinko's and many hotels and airports, and iBAHN, a broadband service provider for hotels and conventions, both provide WPA.
