August 17th, 2021
Hackers love public Wi-Fi. That’s because, for most wireless device users, convenience vastly overshadows the need for security. In fact, this desire for convenient access to web services exposes millions of people every year to cyberattacks. But Wi-Fi is far from the only problem, as the mobile devices we use are further exposed to risks via Bluetooth and Near Field Communication (NFC) connections. And with a growing need to work remotely, while carrying sensitive information and credentials with us, the opportunities for malicious actors to gain access to our private data have never been greater.
So the NSA’s recently published official guidance on how to protect mobile devices in public settings comes at the perfect time.
The report, published on July 29, 2021, covers everything from wireless device security best practices to a comprehensive list of Do’s and Don’ts when using Wi-Fi, NFC, and Bluetooth connections. And while NSA’s cybersecurity guidance is directed at National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) teleworkers, the information outlined is applicable to all users of wireless devices – especially those who work with sensitive data. So below, we’ll extract some key insights, as well as provide additional recommendations.
For starters, NSA’s wireless device security guidance highlights a number of useful Do’s and Don’ts that all stakeholders within your organization can implement on a company and personal level for better overall cybersecurity. Outside of some of the usual suspects referenced, like keeping your software and operating systems updated and using anti-virus/anti-malware software, there are also lesser-known, yet extremely valuable tips given.
Of course, the NSA’s security recommendations go even deeper, highlighting the use of virtual machines (VMs), disabling Netbios Name Service (NBTNS) for Windows laptops, using firewalls to restrict connections by applications, and much more.
We also recommend using mobile data coupled with a VPN rather than public Wi-Fi connections whenever possible, as the signal sent from your cellular provider comes with at least some degree of encryption.
The NSA is quick to point out that nothing is 100% safe from cybercriminals when using the internet and that the methods used to compromise devices and data are constantly evolving.
This reality is further accentuated by the fact that cyberattacks cost companies trillions of dollars globally.
So how do you and the people within your organization stay ahead of evolving threats? Here’s a great way to start: as a first defense, make security an easy option.
How much responsibility an organization has for the personal cybersecurity of their employees and project stakeholders is debatable; however, personal security habits often bleed into the professional environment. So helping stakeholders stay as safe as possible at all times is advantageous and this can be facilitated by the following actions:
Additionally, consider periodically training those in your organization who have access to sensitive data, as well as working with experienced cybersecurity firms that can help safeguard your sensitive data.
And if you want to explore maximizing your cybersecurity to help ensure your organization and sensitive data are protected from cybercriminals, reach out to our experts at email@example.com.