Town of Sahuarita - IT Help Desk

There may come a time when you think your only option is an unsecured free public Wi-Fi hotspot and your work simply cannot wait. If that’s the case, understanding the risks of public Wi-Fi and that there are other connection options may prevent you from falling victim to an attack. Not only are you putting yourself at risk, you are also risking the information of your fellow colleagues when you return to the office. The Town does not support, condone or recommend the use of unsecured public networks for ANY Town business as we've had to clean up the mess this connection creates more than a few times. Users are bewildered that their information has been accessed and stolen after they've simply connected at Starbucks to check their email or finish a presentation. Further, they are baffled when their colleagues report suspicious emails from them and suddenly they can no longer communicate with vendors and staff.

When considering whether to connect to the public Wi-Fi network at your local coffee shop, the airport, a hotel, etc., we have two simple words of advice—do not and DON'T. The massive flaw discovered in WPA2, the encryption standard that secures all modern Wi-Fi networks, launched the possibility that anyone near you could easily access your information if you use a Wi-Fi network. This includes information that was understood as being encrypted. Today’s Wi-Fi standards are flawed and should not be trusted. This is why the Town does not provide a unsecured public WiFi in any of it's spaces.

One of the biggest threats with free Wi-Fi is the ability for hackers to position themselves between you and the connection point. So, instead of talking directly with the hotspot, you end up sending your information to the hacker. The hacker also has access to every piece of information you send out—emails, phone numbers, credit card information, business data, the list goes on. And once a hacker has that information, you’ve basically given them the keys to the kingdom.

However, despite numerous warnings, headlines, and efforts to educate, many people still don’t understand why connecting to free Wi-Fi is an incredibly dangerous situation regardless of what you’re doing online. And while you may think ‘okay, I’m not checking my personal email or logging into my bank account, I’m just checking the sports scores,’ remember anything you do on a public Wi-Fi network is NOT secure. Any information you share or access on these networks is as good as gone.

The Town provides loaner laptops with cellular connectivity built-in if you are traveling or need to work offsite. This connection method is secure as you are connecting directly with our service provider. The Town also has tablets with this configuration available upon request. Usually we will need a supervisors approval before issuing these devices.

The following information will help you remain secure if you feel you must connect to an unsecured public WiFi spot. It is not a guarantee, but should help.

1. Do not touch any of your personally identifiable information (PII)

If you use information over a public Wi-Fi network, you are not treating it like it is valuable. Therefore, if you must use a public Wi-Fi network, avoid touching any PII including banking information, social security numbers and home addresses at all costs. Remember, some accounts require you to enter things like phone numbers when you sign up, so even though you may not remember entering it, you may inadvertently be allowing access to personal information.

2. Use virtual private networks (VPN) instead

A VPN allows you to create a secure connection to another network over the Internet. VPNs can be used to access region-restricted websites, shield your browsing activity from prying eyes on public Wi-Fi and more. They are an excellent alternative to public Wi-Fi networks. While they do cost some money, the peace of mind and additional security is well worth it. Additionally, most employers will equip their employees with a way to connect to a VPN network on the go. And, they should. While employees are on the go and need to access Wi-Fi networks to do their jobs, the company’s data is at a high-risk if they use a public network. The Town provides a vpn for all staff members.

3. Use SSL connections

If you don’t have access to a VPN. you’re not completely out of luck. You can still add a layer of encryption to your connection. When browsing the internet, be sure to enable the "Always Use HTTPS" option on websites that you visit frequently, including any and all sites that require you to enter any type of credentials (most websites that require an account or credentials have the "HTTPS" option somewhere in their settings).

4. Turn off sharing

When connecting to the internet at Starbucks or on the road at the airport, do you really need to have file sharing turned on? Not likely. File sharing is usually pretty easy to turn off from the system preferences or control panel, depending on your OS. Or let Windows turn it off for you by choosing the "public" option the first time you connect to a new, unsecured network.

The best way to connect remotely when on the road is to use your cellular device as a 'Hot Spot.' This feature is available via the Town's service provider and most others. It does need to be activated for your account, so contact the Technology Division before hitting the road. If you use your own personal phone consider investing in an unlimited data plan so you can utilize this service without worrying about data overages.