The summer travel season is right in front of us. While the jungle may not be your intended destination, that’s exactly where you’re likely to find yourself. When you walk out the door with your smartphone and laptop, you become a high-value target. Your individual privacy and your employer’s valuable data is at risk, sought after by attackers eager to get their paws on it.
But don’t fret. Here are some simple (and free) steps you can take to keep your information safe when traveling.
While mobile hotspots in coffee shops and airports are convenient, shared computers and free Wi-Fi are easy attack zones. Wi-Fi skimming, in which anyone on the public network can “sniff” your traffic, is a common tactic. Public Wi-Fi networks may appear legit, but some are specifically designed to dupe connected users Fake hotspot registration pages — designed to look like the real deal — entice you to hand over your credit card information. Public computers may be infected with malware or in the hands of keystroke loggers.
Two-factor authentication is an imperative no matter where you are or what device you’re using. It requires both something you know – such as a PIN or password – and something you have, such as your cell phone. Users input their passwords or protected log-on credentials and a secondary device provides a random one-time use code to authenticate the second log-on step. Most major email programs and many popular websites now offer two-factor authentication. You can see how to do it on Gmail here.
Illegal access to your computer or device enables attackers to infiltrate corporate networks and steal your files. In some cases, when travelling to foreign countries, border agents reserve the right to examine your computer and possibly copy files. Your privacy is compromised and your data can be exposed. But if your device is encrypted, access to your computer or phone doesn’t mean they can access the data. Full-disk encryption is a strong precaution — use it at all times.
Electronic eavesdropping has been reported on airlines and in hotel rooms, taxis and meeting rooms. When you’re in a public place you should never expect your communications are private. Assume that phone calls and electronic communications are insecure and being monitored by adversaries.
Organizations invest millions of dollars in sophisticated security measures to protect you when you’re on their network. But the moment you step out into the jungle, your choices can make an even larger impact on your security. Be aware and take basic precautions. While security practices may seem inconvenient and burdensome, the stakes are too high to consider cybersecurity an afterthought.
Welcome to the Jungle on practical operational security for travelers.