It's official - public Wi-Fi is our most concerning security risk | TechRadar (www.techradar.com)
from AlbinJose121@endlesstalk.org to technology@lemmy.world on 06 Nov 2023 13:43
https://endlesstalk.org/post/10802561

#technology

threaded - newest

habitualTartare@lemmy.world on 06 Nov 2023 13:59 next collapse

However, 41% of Brits use unsecured Wi-Fi if given the opportunity, a report by NordVPN found.

Chobbes@lemmy.world on 06 Nov 2023 14:00 next collapse

What a pointless article. Yeah, people “feel” unsafe on unsecured wifi networks. VPN advertisements have been fear mongering for years. But are they actually unsafe? No. If you use https you are fine. Technically there are more attacks you can do while on the same local network, but I really wouldn’t worry about it in most cases.

nodsocket@lemmy.world on 06 Nov 2023 14:53 next collapse

No.

Imgonnatrythis@sh.itjust.works on 06 Nov 2023 15:13 next collapse

Yeah, kill this. This is an ad.

kittenzrulz123@lemmy.world on 06 Nov 2023 16:23 next collapse

If you actually care about tracking use Tor

__@fedia.io on 06 Nov 2023 19:39 collapse

I call BS - with notable exceptions for a particular omnipresent retail chain whose ToS was recently updated so they could do substantial tracking of your traffic.

A company I work with is wholesale migrating both internal and external accounts to a third-party auth provider in whom I have very little faith. That is a concerning security risk.

Using open wifi hotspots is hardly a best practice in any world, of course, but I'm hard-pressed to believe that it takes precedence over, say, ticking the boxes on NIST CSF or PCI compliance. Or just plain old "shoulder surfing" which has always been a risk in public, but becomes much more concerning given we all have a computer screen in our hand constantly and it's often full of data useful to someone with ill intent.

They might not get your pw or 2FA codes, but knowing your username is plenty for them to convincingly call you later, pretending to be from the bank. "Now that you've changed your pw, the system will send one extra 2FA code to your device as a test. Please read me the code when the text message comes in."