What about online security

[Stephen]

Having just returned from my bank to shut off yet another edit card that was compromised, I am thinking about this. What do you do about using public Wi-Fi? Have you had problems? Do you use VPN or any of that stuff?

What's crazy is I hardly ever use my credit card and practically never for online purchases. I guess I'm getting paranoid. I have set up online banking and all that for when we are on the road, but now I wonder how safe it is.

 

[KASibson]

We don't use public wifi for purchasing things.

BUT. If you want to do so, the safest way to do it is to have a checking account that is separate from your other accounts. Keep a small amount of money in there and only use that account for purchasing things online. Do NOT set it up with any sort of overdraft protection.

If your bank has an app that you can use to access your account on the road rather than a website, that would be more secure.

 

[ArtW]

best way to purchase online is a credit card, they are far more protected than a debit card
personally I generally place orders by phone if possible

 

[Optimistic Paranoid]

Public Wi-Fi is simply NOT secure in any way, shape, or form.  You should restrict it's use to watching movies and casual browsing.

Online banking and other financial transactions should be done via cell service.  There is no evidence yet that that can be compromised the way wi-fi has been.

 

[ArtW]

OP I wonder if that includes online banking on PC using cell as a modem? (USB tether) or should I just get the app?

 

[frater secessus]

The chances of a CC being compromised during transport is vanishingly small.  We are much more likely to have the numbers stolen at retail or when the datastore is breached after transport.  We should be prudent but fixating on wifi is "security theater" rather than particularly helpful.  

Public Wi-Fi is simply NOT secure in any way, shape, or form.  You should restrict it's use to watching movies and casual browsing.

If you are worried about unencrypted websites or other forms of transport then a VPN does the trick.

If you don't want to spend money on it and you have a server elsewhere you can make a poor man's vpn with a ssh tunnel.  
Windows folks would do it with putty.  *nix folk would use their favorite ssh client.  I've been using the autossh wrapper for ssh that reconnects if the connection drops.

Online banking and other financial transactions should be done via cell service.

/squinting

SSL (secure) sites like banking and finance are already encrypted.  There is no security difference in routing them over open wifi, secure wifi, mobile data, etc.  The pubkey exhange has already happened before the user enters anything.

  There is no evidence yet that that can be compromised the way wi-fi has been.

COUGH stingray COUGH

 

[ccbreder]

Simple rule. Use your own internet connection. Every cell phone today has that available. The public ones owned by McD's or Coffee prince or even the best friends at the library is like shouting your personal information to every one on the street.

 

[frater secessus]

If we need a simple rule to follow, it should be "Look for the SSL Padlock icon in the browser before entering personal information."

One and done.

 

[Treknik]

It is much safer to use phone/tethering. I occasionally use public wifi if I can't get phone reception and make sure my VPN (witopia) is running.
This article talks about potential issues even if you are using a VPN. Basically your applications (email client, etc.) could possibly connect to unencrypted wifi prior to your VPN connection.

http://arstechnica.com/security/2015/06/even-with-a-vpn-open-wi-fi-exposes-users/

 

[Oberneldon]

I use my AT&T cell connection for banking either direct or tethered. To protect in general I use HotSpot Shield VPN (Purchase is good for more than one device) so my login to anything via public wifi is secure.

I could never remember to always check or turn on protection so I leave my VPN on all the time, but there are some wifi connections that don't like it so I have to turn it off rather than remember to turn it on.

Use it on my iPhone & iPad

Brent

 

[Treknik]

"... but there are some wifi connections that don't like it so I have to turn it off rather than remember to turn it on."

Occasionally my VPN connects to a Seattle IP address that is blocked on this site!

 

[BobBski]

I don't use public Wifi for purchasing. Also, I pay using PayPal, no credit card numbers used and an additional level of security.

 

[Stephen]

I don't use public Wifi for purchasing.  Also, I pay using PayPal, no credit card numbers used and an additional level of security.

I like using paypal, but it isn't always an option.

 

[Oberneldon]

Just remember that even though you don't think you are transmitting your financial information you may be over public wifi. Do you down load from Apple, google, or Microsoft store using public wifi to update your apps?

You sent your account and password for the update to be down loaded.

You are also sharing your mail login and password I would suspect.

This is why I run VPN out of the gate on wifi.

Brent

 

[highdesertranger]

ok I got to ask what is VPN? highdesertranger

 

[bigsallysmom]

i don't know it this helps but i use different passwords for different levels. finances all different, forums another, gaming another etc. i often have different user names too.

 

[RVTravel]

https://en.wikipedia.org/wiki/Virtual_private_network

 

[Optimistic Paranoid]

I like using paypal, but it isn't always an option.

If the connection is compromised, using PayPal isn't really secure.  The bad guys will get your PayPal ID and password.

 

[RVTravel]

And, look up Opera Free VPN app for iOS and android.

 

[Optimistic Paranoid]

OP I wonder if that includes online banking on PC using cell as a modem? (USB tether) or should I just get the app?

I believe it's secure using it as a modem IF you have all the wifi security stuff - WPA2 encryption, SSID turned off, Mac Address filtering turned on, etc.

https://www.fcc.gov/consumers/guides/protecting-your-wireless-network