In recent years, W&L has pursued a number of initiatives geared towards maximizing the security of internet connected devices used by faculty, staff and students. This has led to the adoption of multi-factor authentication, a password policy upgrade, screensaver lock on inactivity, firewall & VPN protections, as well as active monitoring of potential threats. This layered approach appears to have had a positive effect as evidenced by a reduction in the number of compromised accounts when compared to past yearly data.
While this is good news, it’s not time to take a victory lap. Staying current with device security is an ongoing and ever-evolving practice. Both your work and home technologies should be evaluated. At a minimum, ITS recommends doing a bi-annual check up on your internet connected devices. Consider using daylight savings dates in March and November as reminders to run through the security checklist below.
Change Default Passwords
According to CISA, most network devices, including wireless access points, are pre-configured with default administrator passwords to simplify setup. These default passwords are easily available to obtain online, and so provide only marginal protection. Changing your default password makes it harder for hackers to access a device. Consider using a passphrase as a more secure option.
Keep Software and Firmware Current
This is especially important for your home wireless router. The manufacturer of your wireless access point will periodically release updates to and patches for a device’s software and firmware. Be sure to check the manufacturer’s website regularly for any updates or patches for your device. Always keep your laptop and mobile phone updated with the latest system software and uninstall unused applications frequently.
Consider Setting Up Wi-Fi Guest Accounts
Most modern wireless routers have an option available to create guest accounts. When friends and family visit, your guest account can give them access your home internet connection, but prevent them from being able to access network resources like shared folders, printers or smart home devices.
Change the Name of Your Wireless Router
The default ID – called a service set identifier” (SSID) or “extended service set identifier” (ESSID ) – is pre-assigned making it easy to identify the manufacturer. Change your router to a name that is unique to you and won’t be easily guessed by others. Knowing the manufacturer can give hackers a leg up on how to crack into it.
Use a Firewall and VPN Whenever Possible
Firewalls help keep hackers from using your device to send out your personal information without your permission. While antivirus software scans incoming email and files, a firewall is like a guard, watching for attempts to access your system and blocking communications with sources you don’t permit. While accessing public Wi-Fi, consider using a Virtual Private Network (VPN) to keep your data private. Stay Safe Online has a link to recommended VPN options.
