Business Practices
Aged Care
Over the past 15 or so years WiFi networks have emerged as fundamental infrastructure of modern digital connectivity-no matter where you are, a WiFi network is likely available to you.
However, it's this convenience that often (unintentionally!) leads to complacency towards security at the risk of other data and systems on a network.
In this article, we’ll delve into the risks of having “simple” security on WiFi networks and the often overlooked issue of bandwidth “theft.” At Microsolve, we encourage all our clients to treat WiFi as a critical component and stress the importance of thoughtful planning and robust security measures.
The Pitfalls of “Simple” Security
Weak Passwords and Default Settings
Weak or shared WiFi passwords are still one of the most common issues our support team sees. A single password written on a sticky note at reception can undo every other security control on the network. Attackers exploit this "normalcy" to gain unauthorised access to your Wifi and everything it has access to.
Change default passwords and opt for strong, unique ones instead. Try these tips:
- Combination of upper and lower case letters
- Numbers
- Special characters
Implementing this measure will significantly enhance the difficulty level for potential hackers attempting unauthorised access to your systems.
If you really want to protect your WiFi, move on from passwords and integrate your WiFi with (say) your Microsoft 365 user accounts - makes WiFi access simpler for your staff and the WiFi more secure for the business.
Outdated Firmware and Software
WiFi access points are essentially a small computer with special antennas - being a computer, they run their own special software which requires regular maintenance. Failing to update your this software will expose your WiFi network to well-known vulnerabilities.
Most manufacturers consistently release updates to address security flaws, making it crucial to stay up to date to ensure your online safety. Remember to check for and install updates the manufacturer provides regularly. It's always a good idea to set up automatic updates, too.
Lack of Encryption
Not encrypting your WiFi traffic can lead to unauthorised interception of sensitive data. Information like passwords, financial details, and personal communications are vulnerable without encryption.
Ensure your WiFi network uses WPA3 encryption, the latest and most secure protocol. Avoid using outdated and less secure options like WEP - ideally, pairing this with authentication based on Microsoft 365 accounts gives you the best level of protection for the data using the WiFi network
The Dangers of Bandwidth “Theft”
Network Congestion and Sluggish Performance
When unauthorised individuals gain access to your WiFi network, they use up valuable bandwidth - this will impact on the internet speeds for legitimate users, hamper overall productivity (Zoom or Teams meetings starting to stutter unexpectedly, or websites being exceptionally slow to load) and encourage risky behaviours such as sharing of connections, or introducing unsecured hotpots into secure environments.
To maintain network performance at expected levels, ensure your network firewall has access controls that consistently monitor the connected device count and the traffic types using WiFi - any changes should be investigated. If bandwidth restrictions persist, perhaps an upgrade to your internet plan is required.
Increased Vulnerability to Attacks
Having unmonitored users on your network is like having uninvited and unknown guests in your house. They can introduce malware and spyware or engage in illicit activities. The potential for compromise of your organisation’s security and reputation is well founded and should be seriously considered.
Having a managed, strong firewall, ideally with intrusion detection, and intrusion prevention systems is good practice. Such devices should regularly scan for suspicious activities on your network and raise alerts with your support system for investigation.
Treating WiFi as a Critical Component of Your Business
Comprehensive Security Policies
Develop and enforce security policies for your WiFi network.
This should cover the following:
- Password policies
- Encryption standards
- Procedures for granting access
Regular Audits and Testing
Regularly evaluate the security of your WiFi network by conducting vulnerability assessments and penetration testing. Identify and address any vulnerabilities in your security infrastructure.
Employee Training and Awareness
Promote team members’ awareness regarding WiFi security, educating them on best password selection and protection practices. Cultivate a cybersecurity-conscious culture across your organisation.
In the age of paramount connectivity, securing your WiFi network is crucial. Pay attention to the risks of lax security and bandwidth theft. Safeguard your data, reputation, and operations by treating WiFi as a vital component. A strong WiFi network is the foundation for a secure and thriving digital presence.
