Tips for keeping your data safe while traveling …

Most of us will be traveling in the next couple of months. Cyber-criminals know this. They continue to find creative ways to get your data. Don’t make it easy for them. Here are our tips to protect your data and devices while you travel:

Before you leave …

• Update your passwords

  • Consider changing your passwords on key accounts if you haven’t recently.

  • Make sure each password is strong and unique – remember, a longer password (> 11 characters) is safest.

  • If you aren’t using LastPass, take a few minutes to get started.    

• Update your device

  • Before leaving, check for and install updates on all devices.

• • Make sure each device backup is current.

While you're away ...

• Leave your Duke data in the cloud

  • The best way to ensure your data is safe while you’re on vacation? Don’t work while on vacation! If you must, please don’t put Duke data on your mobile device. That includes laptops, tablets and phones.

  • Use Box, OneDrive and your DUSON shared drives for all of your Duke data.

• Protect your devices

  • Keep them with you at all times.

  • Don’t draw attention to expensive phones, tablets and laptops.

  • Use the hotel safe when you are away from your room.

• Turn off Bluetooth

  • It’s an easy way for a hacker to get into  your device.  If you don’t need it, turn it off.

• Keep your devices locked

  • Make sure your device is locked when you aren’t using it.

  • Use the automatic locking features and choose a short period of inactivity.

• Use public Wi-Fi carefully

  • Make sure you connect to real Wi-Fi networks in hotels or airports.

    •  RDUAirportFree and HiltonHotelsFree look real, but are more than likely “evil twin” Wi-Fi access points set up by criminals to monitor your activity and acquire your data.

  • Most hotel and airport Wi-Fi networks will require some sort of password or acknowledgement before you can use them.

  • Never select the “connect automatically” option for public Wi-Fi networks. 

    • Cyber-criminals can set up an evil twin Wi-Fi called McDonaldsFree anywhere. If you selected the connect automatically option the first time you joined McDonaldsFree, they can access your device without your knowledge.

• Use the Duke VPN

  • Any time you connect to an unknown WiFi, assume your data is at risk. You can reduce the risk by connecting the the Duke VPN as soon as you sign in.

  • Even if you don’t have any Duke data to use, just using the VPN will help you remain safe.

When you return

• Check your devices and system access

  • Delete all WiFi points to which you temporarily connected.

  • Check for system updates

• Consider changing your passwords

  • Hey – if you’re using LastPass, it’s easy!

    • Another reason to be using LastPass.

Extra Credit

So are you already practicing all of our safe-computing tips while traveling?  Here are two advanced tips and a suggestion to get you to the next level of cybersecurity.

• Use Multi-factor Authentication on all resources

  • Most applications and websites now have the option of using two forms of authentication. It’s one of the best ways to keep your data safe.

• Use a Personal VPN

  • Using a personal VPN provides an encrypted connection between your device and your destination website. This is a critical component of travel cybersecurity, particularly when using hotel, airport or other public Wi-Fi networks. Select one that works on all of your devices.  Need a suggestion? Here’s a nice comparison of different personal VPN services from a trusted source. If you’d like a recommendation for a basic, easy-to-use personal VPN, try TunnelBear. I use it as a personal VPN on my laptop, tablet and phone.

• Here’s a Traveler’s Tip Sheet from Homeland Security

  • Print a copy and keep it handy as you’re packing for that next epic vacation.