Criminals know people reuse their passwords, for example, so, when they inevitably manage to obtain millions of usernames and passwords, they use automated tools to try these logins against other websites, including banks, corporate networks, e-commerce sites, email providers, and social media sites. They also know that people often use simplistic passwords or common phrases; hackers have therefore developed tools to test every permutation of dictionary words.
Travelers as Targets
The threat is often higher when traveling. Scammers often target travelers who are often likely to be more relaxed than in regular settings, and be carrying multiple personal information documents, as well as electronic devices containing personal information.
In addition, when away from home, many travelers increase their use of social media to stay in touch with friends and family, and perhaps brag about their location and activities. Experienced criminals can glean much information from publicly shared social media posts and build up a detailed personal profile of a potential victim. Such a profile can enable them to pose as a legitimate contact, and even build up trust over time; A link in an email from a “trusted” contact is more likely to be opened by an unwary recipient.
Travelers also often increase their reliance on free public Wi-Fi, which potentially enables others connected to the same network to access private communications and data, or to find ways to infect computers with malicious viruses.
Tips and Advice
Wrongdoers therefore have many routes to access personal data and could develop to pose a significant threat of reputational or financial harm. However, the threat can be minimized by some basic precautions:
-
Always book travel from reliable sources and only use official websites. Cyber criminals often use fake websites that pretend to be the website of a reputable company in order to steal personal information.
-
Only bring those personal documents and electronic devices that are needed for the duration of the trip.
-
Exercise caution when connecting to airport, and other public Wi-Fi connections. Only use secured networks, or networks that require login or registration, as connections that are not secured may be unsafe. Do not use public networks for accessing personal information.
-
Use different passwords for every account. Use at least eight characters, upper and lower-case and special characters. Avoid common words and short phrases. Consider using a password manager to help create stronger, unique passwords. Change passwords when logging back on to a security connection after using a public internet connection.
-
Use a virtual private network (VPN) when connecting to a public network. Connecting to a VPN encrypts the data, minimizing the risk that personal information will be stolen. Ensure a firewall is installed on any traveling computer.
-
Do not open suspicious weblinks and exercise caution when opening unsolicited messages.
-
Ensure file-sharing is disabled when connecting to the internet.
-
Avoid using USB ports in public places, such as airports or train stations.
-
When possible, leave personal electronic devices in safes in their hotel rooms when not in use.
This document is written by GardaWorld.
