Your IT Consultant
Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.
FBI Warns of Weak Security for Hotel Wireless Networks
October 7, 2020
We're always cautioned users about the use of public Wi-Fi and recommend against it. In January 2020, Proofpoint reported in its State of the Phish 2020 Report that 45% of US workers believe trusted locations always offer safe public Wi-Fi. TechRepublic has reported that the FBI has issued a warning about the weak security of hotel Wi-Fi networks. Shocker. The wireless passwords used by most hotels are pretty weak and easily determined. You may even find the password posted near the service desk. The equipment is probably dated and guests have no way to know if it has been patched for the latest vulnerabilities or had default settings changed.
Many hotels are now offering special day rates to entice usage of its rooms for those that need a quiet place to work away from their normal residence. This means an increase in users transmitting business information over networks with weak security. If you must use public Wi-Fi for your remote working needs, the FBI has listed some warning signs to detect if you computer or mobile device has been compromised.
- Mobile device slows down suddenly.
- Websites automatically redirect away from the website you are attempting to visit.
- The cursor begins to move on its own.
- A mobile device begins to launch apps on its own.
- There's an increase in pop-up advertising.
- There's a sudden increase in data usage.
- There's a faster-than-usual decrease in battery life.
- There are unexplained outgoing calls, texts, or emails.
Since there are no hotel security standards for providing secure wireless, the FBI provided suggestions for improve your security posture if you must use hotel Wi-Fi. Usage of a VPN will certainly help. You should also configure and use multi-factor authentication (MFA). Better yet, use the hotspot feature on your smartphone and avoid the hotel wireless entirely.
Email: Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com