The Biden administration would like you to get a vaccine and wear a mask. Oh, and one more thing: It has just proclaimed that it’s time for government employees and contractors to get off public Wi-Fi, where they can pick up another kind of virus.
In a warning to all federal employees, leading defense contractors and the 3.4 million uniformed, civilian and reserve personnel serving in the military, the National Security Agency issued an unusually specific admonition late last week that logging on to public Wi-Fi “may be convenient to catch up on work or check email,” but it is also an invitation to attackers. In an eight-page document, the agency described how, in a year marked by ransomware attacks on pipelines, meatpackers and even the police force in Washington, D.C., clicking on to the local coffee shop’s network was asking for trouble.
To continue reading this report in the New York Times, go to:
NSA Issues Guidance on Securing Wireless Devices in Public Settings
NSA released the Cybersecurity Information Sheet, “Securing Wireless Devices in Public Settings” today to help National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) teleworkers identify potential threats and minimize risks to their wireless devices and data.
Cyber actors can compromise devices over Bluetooth, public Wi-Fi, and Near-Field Communications (NFC), a short-range wireless technology. This puts personal and organizational data, credentials, and devices at risk. Devices include laptops, tablets, mobile, wearable, and others that can connect to public wireless technologies. The Cybersecurity Information Sheet describes how to identify potentially vulnerable public connections, secure common wireless technologies, and better protect devices and data.
NSA lists malicious techniques used to target each technology and provides specific recommendations, such as avoiding public Wi-Fi and instead using a personal or corporate mobile hotspot with strong authentication and encryption. If users must connect to public Wi-Fi, they should take necessary precautions, such as using a personal or corporate-provided virtual private network (VPN) to encrypt the traffic.
The guidance throughout helps users understand the risks in using public wireless technologies and enables them to make calculated decisions about the level of risk they accept. At a minimum, NSA recommend disabling Wi-Fi, Bluetooth, and NFC when not in use.
NSA released this information as part of its mission to secure the DoD, DIB, and NSS.
For more information, read the full Cybersecurity Information Sheet.