Cubadebate

The new installment of Secure Code approaches a very important topic.

Hello dear readers, today is Wednesday and we meet again to talk to you, this time about public Wi-Fi networks. In the digital age, communication is essential. Modern life is unthinkable without the stable and widely distributed functioning of information transmission, storage and processing systems. The need for timely availability of information, increasing its volume, and reducing transmission time have contributed to the continuous growth of consumer demand for information and communication services. A convenient way to receive and transmit data is wireless networks. One of the most widely used wireless networks is based on the IEEE 802.11 standards set. Its widespread use allows users to obtain all the necessary information at any time and transmit it to other people.

The increasing deployment of public Wi-Fi hotspots and the emergence of portable devices such as tablets and cell phones have made it easier to access information on the Internet. Available in coffee shops, airports, and public parks, they provide a convenient solution for staying online. The most important feature of any such network, regardless of its complexity and purpose, is the security of confidential information. However, these networks pose potential risks to security and privacy. Unfortunately, most users ignore privacy threats because they currently have no way of knowing the extent to which their privacy has been exposed.

There are several types of public Wi-Fi networks, each with varying levels of security. Open networks don’t require authentication, making them very vulnerable. Closed networks, which require a password, offer greater security, but aren’t foolproof. Some networks require a username and password, providing an extra layer of protection, but can still be hacked.

In Cuba, Internet access through public Wi-Fi hotspots has increased in recent years following the digital transformation process. According to official data published by the Cuban telecommunications company (ETECSA), there are currently more than 1,000 public places in the country, with Pinar del Río, Havana, Granma, Santiago de Cuba and Holguín, in that order, being the provinces with the most representation, as shown in the following figure.

With this in mind, ETECSA has year after year integrated different security elements into these public access spaces, but there may be malicious people who, through their devices, create other networks, even simulating the official networks of said service provider, with the aim of developing sometimes unauthorized activities.

Without wanting to create panic in their use, they should know that users connected to public networks can often be exposed to risks. And I am not just talking about people who are in the country, we may find ourselves outside Cuba at some point, even for work reasons or not, and we must be prepared for a possible cyber attack. The truth is that at any time an attacker can access any private information on an electronic device located on the same wireless network. Below I talk about some of its main problems.

One of the biggest risks of using them is data interception. Data transmitted over these networks can be intercepted by other malicious users. In addition, there is the risk of data theft, as data stored on your device may be available to other users connected to the same network.

Another major risk is the Man-In-The-Middle (MiTM) attack. In this type of attack, an attacker intercepts and modifies the communication between two parties without their knowledge. This can lead to the theft of sensitive information such as passwords and financial data. I will probably devote a column article to explaining this in more detail soon. On the other hand, public networks can be used to distribute malware and infect connected devices.

Cuba is increasing the number of public places with access to Wi-Fi networks.

How can we protect personal information? Is public Wi-Fi traffic always encrypted? Can you be sure that information will not fall into the wrong hands? There are certainly many questions that we ask at once, but despite the risks, there are several measures that we, the users, can take to protect ourselves when using public Wi-Fi access points:

Verify the network: Before connecting, first make sure that the Wi-Fi network is legitimate and not a fake access point created by a third party or just an attacker. Do not deliberately assume that the networks that are possible to connect to and visible in the range of your device are legitimate or owned by the location you are in. Generally, those that you see with the names “Free Wi-Fi” or “Free Wi-Fi” or similar are a warning sign. I know we will always be tempted to connect but my advice is to be careful. Much less access to networks whose names may contain alphanumeric characters, you may be interfering with a local wireless network that was created for a very specific purpose.
Avoid sensitive transactions: I do not recommend accessing official links to your bank account, such as the ENZONA online payment gateway, and do not attempt to make online purchases while connected to a public Wi-Fi network. Move these tasks to when you are at home or access them through the data network provided by your cell phone for this purpose.
Turn off auto-connect: Set your device not to automatically connect to public Wi-Fi networks. We always do this by simply unchecking this option when we connect. Make sure to forget these networks on your device when you leave the place you connected from. I’m sure you don’t want your device trying to connect to an unsecured network when you’re distracted.
Turn off Wi-Fi when not in use: Turn off your device’s Wi-Fi connection when you don’t need it to avoid automatic connections to unsecured networks. This should be a similar practice to what I told you when I told you about the webcam. Remember?
It is best to check Facebook, other social networks, instant messaging applications and emails on your personal computer: the access point is legitimate and ideal, and you probably want to know who wrote to you and the latest digital activities shared by your family and friends. It is probably best to do this from your computer, where you can use the browser's security icon, which is usually a lock in the address bar, to let you know that the connection is secure via HTTPS. The main element to protect here is the passwords for the accounts in these applications that we usually use to communicate. You should not send private corporate messages or sensitive information when connecting to these networks.
Keep your software up to date: Make sure you have the latest security updates on your device. This always avoids bigger evils, as attackers always try to exploit some security holes in our device software.
Turn off sharing: Make sure to turn off file and folder sharing on your device when connected to a public network. Not to mention having shared folders for all users without the required protection. This is valid every time we connect to any network.
Use two-factor authentication: Enable two-factor authentication on your important accounts to add an extra layer of security.
Use secure browsers: Use browsers that offer advanced security features and make sure they are updated.
Review your privacy settings: Adjust the privacy settings for your apps and devices to limit the amount of information you share.
Use security applications: Install security applications that can detect and block threats in real time. It is suggested to activate and configure a good firewall and always have an updated antivirus.
Stay informed: Be aware of and adhere to official recommendations and communications issued by the Ministry of Communications and ETECSA regarding major cybersecurity incidents that may occur in the country, especially those affecting these public access areas.