Skip to main content
  1. Home
  2. Online Security
  3. Business Security News
  4. Securing Wireless Devices

Securing Wireless Devices in Public Settings

As telework becomes an essential component of the “new normal” for businesses, many are teleworking from home or during travel. While working from public networks, additional steps must be taken to ensure that they are secure.  Protecting personal and corporate data is essential at all times, but especially when teleworking in public settings.

Cybersecurity is crucial for users and businesses to ensure that data, devices, and login credentials remain secure and uncompromised. Identifying higher-risk public networks and implementing security best practices in public settings are important pieces of cybersecurity as a whole.

Accessing public Wi-Fi hotspots may be convenient, but public Wi-Fi is often not configured securely. Using these networks may make users’ data and devices more vulnerable to compromise, as cyber actors employ malicious access points, redirect to malicious websites, inject malicious proxies, and eavesdrop on network traffic. Cyber actors can compromise other common wireless technologies, such as Bluetooth® and Near Field Communications (NFC). These technologies must be properly configured to ensure user devices remain secure from compromises. The risk is not merely theoretical; these malicious techniques are publicly known and in use.

The following are best practices for securing devices when conducting business in public settings. While these best practices cannot ensure data and devices are fully protected, they provide protective measures users can employ to improve their cybersecurity and reduce risks.

Best Practices for Securing Wireless Devices

While technology settings and business controls may help keep security measures up to date, users should also be aware of the potential threats from connecting to publicly available Internet and take appropriate precautions. Before conducting business remotely or in public settings, users should obtain explicit authorization from their organization. Organizations may decide to require users working remotely to adopt best practices such as the ones outlined below. The information that follows may be used to better protect users, devices, and data while teleworking.

Wireless Devices Do’s and Don’ts

Do Don't
  • Keep software and applications updated with the latest patches.
  • Do not leave wireless devices unattended in public settings.
  • Use anti-virus/anti-malware software, if applicable.
  • Do not use personal information in the names of devices (i.e., John/Jane Smith’s computer).
  • Use Multi-Factor Authentication (MFA) whenever possible.
    • MFA can assist in account/device security to defend against password hash captures.
  • Reboot regularly, especially for mobile phones after using untrusted Wi-Fi.

For Laptops:

  • Enable firewalls to restrict inbound and outbound connections by application.

For Windows Laptops:

  • Disable Link-Local Multicast Name Resolution (LLMNR), if applicable.
  • Disable Netbios Name Service (NBT-NS).
  • Configure Web-Proxy Autodiscovery Protocol (WPAD) to use only corporate proxy servers.
    • In conjunction, disable Autodetect Proxy Settings.

Public Wi-Fi

Avoid connecting to public Wi-Fi when possible, as there is an increased risk when using public Wi-Fi networks. For greater security, use a corporate or personal Wi-Fi hotspot with strong authentication and encryptions whenever possible.

Precautions must be taken before connecting to public Wi-Fi. Data sent over public Wi-Fi networks – especially open public networks that do not require a password to access – is vulnerable to theft or manipulation. Even if a public Wi-Fi network requires a password, the traffic transmitted over the network may not be encrypted. Malicious actors can decrypt data over a password-secured Wi-Fi network if they know the pre-shared key. A malicious actor can also coerce the network into using insecure protocols or obsolete encryption algorithms. Additionally, a malicious actor can set up a fake access point (known as an evil twin) to mimic the nearby expected public Wi-Fi, resulting in that actor having access to all data sent over the network, including personal and corporate login credentials.

If connecting to a public Wi-Fi network, use a personal or corporate-provided virtual private network (VPN) to encrypt traffic sent over the network by our device.  Users should incorporate secure browsing methods, such as only accessing Hypertext Transfer Protocol Secure (HTTPS) websites.  This is indicated by the URL beginning with https:// and/or a lock symbol.  These methods will aid users in better protecting their information from Wi-Fi snooping, man-in-the-middle techniques, server masquerades used to capture password hashes (such as the Responder tool), and evil twin mimics.

Public Wi-Fi Do’s and Don’ts

Do

Don't
  • Connect to a personal/corporate wireless hotspot with strong authentication and encryption, if possible.
  • Do not connect to open Wi-Fi hotspots.
  • Disable Wi-Fi when not in use.
  • Do not enter sensitive account passwords on sites/applications.
  • Ensure the device is connecting to the correct network.
    • Disable Wi-Fi network auto-connect.
  • Avoid accessing personal (e.g., bank accounts, medical, etc.).

If connecting to public Wi-Fi is necessary:

  • Only connect to secure public Wi-Fi.
  • Do not have sensitive conversations.
  • This usually requires a password or other forms of authentication, limiting who can connect.
  • Avoid online shopping or financial transactions.
  • Only connect to networks with WPA2-encryption at a minimum.
  • Do not click unexpected links, attachments, or pop-ups.
  • Log out of the public Wi-Fi network and “Forget” the access point when finished using it.
  • Delete unused Wi-Fi networks.
  • Use an IPsec VPN.
  • Use HTTPS browsing protocols.
  • Only browse to or use necessary websites and accounts.
For Laptops: 
  • Turn off the device file and printer sharing on public networks.
  • Do not set public Wi-Fi networks to be trusted networks.
  • Use virtual machines (VMs) for an additional layer of security (if feasible) to contain drivers (e.g., Wi-Fi driver) and applications (e.g., web browsers) that process untrusted data from external sources.
    • The VM limits compromised adversarial activity.  If compromised, the VM can be discarded.
  • Do not browse the Internet using the administrator’s account for the device

Bluetooth

Bluetooth technology transmits data wirelessly between devices within short distances. This feature is very convenient in private; however, keeping a device’s Bluetooth feature enabled in a public setting can pose a cybersecurity risk. Malicious actors can scan for active Bluetooth signals, potentially giving them access to information about the targeted device.  That information can then be leveraged to compromise the device. Bluejacking, Bluesnarfing, and Bluebugging are all Bluetooth compromise techniques that can be used to send, collect, or manipulate data and services on a device.  Additionally, Blueborne (a publicly released Bluetooth exploit) can allow malicious actors complete control over a user’s Bluetooth device that could enable access to corporate data and networks.

Bluetooth Do’s and Don’ts

Do Don't
  • Monitor Bluetooth connections by periodically checking what devices are currently connected to the device.
  • Do not use Bluetooth to communicate passwords or sensitive data.
  • Disable the Bluetooth feature when it is not being used.
  • Do not accept non-initiated parting attempts.
  • Ensure the device is not left in discovery mode when Bluetooth is activated and discovery is not needed.
  • Use an allowlist or denylist of applications that can use the devices’ Bluetooth.

NFC

Near Field Communications (NFC) offers the benefit of contactless payments and other close device-to-device data transfers. As with any network protocol, NFC vulnerabilities can be exploited. Due to range limitations, opportunities to exploit vulnerabilities may be limited.  However, be aware of security risks with the technology and if possible, disable the function when not in use.

NFC Do’s and Don’ts

Do Don't
  • Disable NFC feature when not needed, if possible.
  • Do not bring devices near other unknown electronic devices; this can trigger communication.
  • Do not use NFC to communicate passwords or sensitive data.

Users should consider additional security measures, including limiting/disabling device location features, using strong device passwords, and only using trusted device accessories, such as original charging cords.

Telework Safely

The methods used to compromise devices and data are constantly evolving.  As telework becomes more common, users are more frequently bringing themselves and their data into unsecured settings and risking exposure.  By following available guidance, users can identify potential threats and put best practices into action when teleworking in public settings.