Let’s look at the five most common tactics criminals use on public networks. First up are Man-in-the-Middle attacks, in which a hacker positions himself between your device and the public router. MTM attacks allow the data you send, such as when you enter your login credentials to a website, to be intercepted, read and sometimes altered.

A second type of attack involves fake networks named to sound legitimate. At an airport when you open your Wi-Fi to find available networks, you might see one that looks like it could be the legitimate free Wi-Fi offered at most airports. This is called an Evil Twin Hotspot. Once you connect to it, the attacker captures your data as you browse.

Criminals also use specialized software to eavesdrop on unencrypted signals and capture sensitive information, a method called packet sniffing. Further, they may use a public network to distribute malware that could infect your computer with any number of things, including ransomware. A common lure is a pop-up window that says you need to immediately update your computer. The last method is session hijacking. That happens when hackers steal session cookies from your device as you’re browsing websites. They then use those credentials to impersonate you on those sites, which could entail access to sensitive information.

The best option is to avoid public Wi-Fi altogether. If your cellphone plan includes unlimited data, you don’t have to worry about running up charges away from home. But if you don’t have unlimited data or you are traveling out of the country on a typically limited international daily data plan, you will have to take precautions.

If possible, avoid visiting any websites that store sensitive information, including banking apps, work email and your medical providers’ websites. You can browse the news, entertainment sites, blogs and other informational websites on a public network. These should be safe as long as you haven’t used the same password for sensitive websites. If you have, update your passwords before you next access public Wi-Fi. Also, enable two-factor authentication wherever possible. This means you will need an additional code sent to your phone to log in to a website, along with your password. It also means that cybercriminals won’t be able to infiltrate sites you use without also having your phone.

For your laptop, it is safer to use your phone as a mobile hotspot rather than to connect to public Wi-Fi. Your data will be sent through your phone’s cellular connection, which is much more secure. On your laptop, look for your phone’s name in the list of available Wi-Fi networks by clicking on the signal icon. Double click on your phone’s name to connect. Once connected, any data you use will be put against your plan, but if you have an unlimited plan, you don’t have to worry about the cap. Using your phone as a mobile hotspot also drains the battery, so make sure you have a fully charged phone before you go, keep it plugged into your laptop  and keep a portable charger on hand in case you need it.

If your circumstances require you to access any sensitive sites such as your online banking account, you may want to consider using a Virtual Private Network, or VPN. When you use a VPN, your actual IP address is masked and replaced with one from the VPN’s server, creating an encrypted tunnel for your data. It is also useful if you are traveling in a country with strict government censorship, such as China, where access to Western news and social media is blocked. 

VPNs are typically available by subscription with a one month minimum. Expect to pay from $10 to $15 per month. If you travel frequently and can justify an annual subscription, the monthly rate drops to $5 or less. A good VPN should have AES-256 bit encryption and a no-logs policy, meaning the provider does not keep a record or track your browsing history. It should also feature a kill switch that will automatically disconnect your device from the internet if the VPN connection drops. While VPNs do slow your internet connection, a good VPN should state it maintains at least 75% of original speed. Finally, check how many devices can use the VPN at the same time, and make sure that number matches your requirements.

Leslie Meredith has been writing about technology for more than a decade. As a mom of four, value, usefulness and online safety take priority. Have a question? Email Leslie at asklesliemeredith@gmail.com.