Seven tips for cyber security on holiday
Sophos Cybersecurity, Tipps, Urlaub
Summer holiday time: that can mean two weeks camping, but also six weeks overseas, including working on the road. To ensure that data and data and devices in foreign WLAN networks, Sophos has seven little precautionary tips.
Working in a home office has made employees more vulnerable in terms of
cyber security at home and on the road. Nevertheless, working
still a smaller safe space for IT than the on-site workplace.
than the on-site workplace. At the same time, the network at home offers
far more protection than when travelling. For a carefree holiday in terms of
Sophos has therefore summarised a few of the most important points
points:
Should I back up before I leave?
Yes. Even if you are very conscientious about watching over all your devices,
a mobile phone or laptop can always fall off, land in the pool or take a cocktail shower.
take a cocktail shower. Worst case: it can also be stolen,
which is not uncommon on holiday. So please follow the
principle: the only backup you regret is the one you didn't make.
made. A reliable backup before you leave also means,
and reducing the amount of data that you might have to give up
you may have to declare or disclose when crossing the border (see more tips below).
(see below for more tips on this).
Should I encrypt my devices?
Yes. Most modern mobile phones and tablets are pre-encrypted at the factory.
pre-encrypted at the factory, but encryption depends on having a correct
you have a proper lock code that gives access to the encryption used
encryption and the corresponding keys. Pick
a long lock code. We recommend ten digits or more -
no, not 12345 12345. Practice it like a phone number. If necessary
the code can also be written down in code form - in case you have an
you have an absolutely comprehensible blackout in a moment of shock. If a laptop
If you are taking a laptop with you on holiday, a secure password and hard disk
and hard disk encryption are strongly recommended.
Should I be worried when I go abroad?
Worry? No. But it would be good to take precautions. Many countries with
border controls make it a condition of entry that users unlock the devices they carry
unlock their devices and let the officials take a look at them.
at it. A few countries may even demand that a so-called
a so-called forensic copy. This means that they copy
every sector of the device, including the sectors of the hard drive that contain data
that have been previously deleted. This process can take quite
time, so that a 10-minute border crossing can, with a little bad luck
can turn into a delay of several hours. Some countries require
not only postal address and telephone number, but also email and
social media address. Of course, this information can be
refused, but the holiday destination may not allow entry.
not allow entry. It therefore makes sense, before booking a holiday, to familiarise yourself with the
the technical entry requirements of the country in question before
country before booking a holiday.
Should I use public Wi-Fi on my trip?
If you want to. The dangers of using public
Wi-Fi services are very manageable and can be well contained:
Stick to apps with good encryption and browse
on websites with secureURLs, i.e. starting withhttps://.
However, if you are accessing services in the country you are in
you need to install a special digital certificate, this means that your
certificate, this means that your surfing behaviour can almost certainly be
can be spied on while you are there and even when you are back home.
even when you are back home. If you don't want to use a public WLAN
a local SIM card with a prepaid data plan for the duration of your stay.
for the duration of your stay. Please bear in mind that most
countries require their telephone providers to have what are called
legal interception capabilities. A mobile data tariff is therefore
not anonymous just because you bought a SIM card in a shop.
Should I use kiosk PCs in airports or hotels?
No. We strongly advise against it, unless it really cannot be
unavoidable. However, you should limit logins and the
and disclosure of data as far as possible. For example, if you
a boarding pass at a hotel kiosk PC before you go to the airport, you should not
airport, you should not check your Facebook or online banking account at the same time.
online banking account at the same time. On these devices there are
simply too many unknown components and users on these devices.
What about spycams in hotel rooms or Airbnbs?
There is no blanket answer to this question, but
camera spies in guest quarters are a serious matter, and detecting them is
and spotting them is often a matter of luck due to their tiny size. If you
who nevertheless wants to go in search of them: First look for obvious
obvious hiding places. Clocks that are oddly positioned,
duplicate smoke detectors, electronic devices in places where they are not
electronic devices in places where they are not needed, signs of digital devices squeezed into
ventilation shafts, and so on. If found, photograph (do not
out so as not to provoke a counterclaim from the perpetrator) and report the
report the incident to the local police and the head office of the hotel or landlord.
or landlord. To reduce the risk of being recorded when entering
passwords or lock codes, the keyboard can be shielded when entering critical data.
can be shielded when entering critical data. This is generally
recommended for the use of sensitive services with password entries
on the move.
What if I want to take my work laptop with me?
This question must first be clarified with the employer. If they allow it, they may also give advice or instructions for use in the country in question. for use in the country concerned. Some employers even have even have specific terms of use for work equipment abroad.
Finally, the safety of your equipment should not spoil your holiday enjoyment. should not spoil your holiday. Prepare yourself with the help of the and only take as many devices with you as you really need. really need. And if you have any doubts about your data, don't enter anything. and postpone it until the time you are back home. back home.
We & Sophos wish you a carefree and safe summer!