30 July 2021

NSA publishes guidance on how to secure wireless devices in public settings


NSA publishes guidance on how to secure wireless devices in public settings

The US National Security Agency (NSA) released a set of recommendations on how to secure wireless devices in public settings. The new guidance is designed to help National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) teleworkers identify potential threats and minimize risks to their wireless devices and data.

“Cyber actors can compromise devices over Bluetooth, public Wi-Fi, and Near-Field Communications (NFC), a short-range wireless technology. This puts personal and organizational data, credentials, and devices at risk. Devices include laptops, tablets, mobile, wearable, and others that can connect to public wireless technologies,” the agency notes.

“If users must connect to public Wi-Fi, they should take necessary precautions, such as using a personal or corporate-provided virtual private network (VPN) to encrypt the traffic.”

The info sheet provides best practices for securing devices when conducting business in public settings, as well as steps users can take to secure their devices and data.

To reduce the risks, the agency advises to avoid connecting to public Wi-Fi, when possible, and use a corporate or personal Wi-Fi hotspot with strong authentication and encryption whenever possible. It also recommends users to disable Bluetooth and NFC while in public and not in use to prevent the exposure of the information that can be used to compromise the device.

Back to the list

Latest Posts

Turla APT targets entities in US, Germany and Afghanistan with new backdoor

Turla APT targets entities in US, Germany and Afghanistan with new backdoor

The TinyTurla backdoor is used to maintain access to the target system even if the primary malware is discovered and removed.
22 September 2021
Microsoft shares details on huge BulletProofLink PHaaS

Microsoft shares details on huge BulletProofLink PHaaS

BulletProofLink has been active since 2018 and is currently advertised on underground hacker forums.
22 September 2021
US Treasury sanctions Suex cryptocurrency exchange linked to ransomware operations

US Treasury sanctions Suex cryptocurrency exchange linked to ransomware operations

The Treasury Department said that over 40 percent of Suex known transactions is associated with illegal activity.
22 September 2021