Launching the World of Warbiking tour! First stop: San Francisco

warbikingsanfranciscoAs a dedicated cyclist, not to mention a security guy, I’ve undertaken a World of Warbiking project at Sophos. It involves traveling around the globe, riding the streets of major cities with my computer-equipped mountain bike, and looking for wireless connections along the way to sneak a peek at the companies and regular people who are using them. (Don’t worry, it’s all perfectly legal.)

The World of Warbiking is an ambitious project to find out how our hunger to be online at all times is leaving millions of people and companies and their sensitive data exposed to hackers and spies. Our experiment kicked off this week in San Francisco, where we found a disturbingly large number of people willing to connect to an open wireless network we created, without any idea of who owned it or whether it was trustworthy.

Incredibly, conventional wireless network security is still a major issue, although the security industry thought it had figured out the problem years ago. A massive quantity of businesses and home users employ insecure, poorly implemented or even defunct wireless protocols. Just as disturbing is many people’s total disregard for basic security.

San Francisco warbiking: What we found

When we set up an insecure Wi-Fi network in San Francisco, 1,512 users happily connected to our open wireless network without any idea whether we were honest or out to do them harm. If you connect to a network, the owner of that network could insert code on your computer or redirect you to a malicious website.

Of the 1,512 users that connected to our wireless network, an alarmingly large number of users did not have the latest software. It’s essential that you keep your operating system and web browser patched with the latest security updates at all times (that goes for you too, Mac users). With a few extra command line arguments, it would have been trivial to attack nearly everyone in the study.

2H1A9623Compounding the issue is the growing number of devices that are permanently identifying themselves via procedures such as Bluetooth; this kind of behavior is increasingly putting everyone’s valuable data out in the open and at risk. It’s like shouting your personal or company information out of the nearest window and being surprised when someone abuses it.

Even though many people get security wrong, that doesn’t mean it has to be difficult. There are lots of easy ways to improve your security. I urge you to read these 10 tips to learn more:

I will be continuing this warbiking project in more cities in more countries around the world, carrying thewarbikinglaptop message of better security with me. Definitely check out the cool video below, which we made of my warbiking tour of San Francisco for our presentation at RSA Conference 2014 this week.

How will other cities around the world compare? Find out when the World of Warbiking presented by Sophos comes to a city near you.

James Lyne is Global Head of Security Research at Sophos. You can follow him on Twitter: @JamesLyne

13 thoughts on “Launching the World of Warbiking tour! First stop: San Francisco

  1. Pingback: Sophos in the news: World of Warbiking, Apple’s goto fail bug, Android malware surge | Sophos Blog

  2. Pingback: How to keep your Wi-Fi traffic secure and the data snoops out (Video) | Sophos Blog

  3. Pingback: CeBIT opens with focus on Big Data and the Internet of Things | Sophos Blog

  4. Pingback: Sophos at CeBIT: UTM Accelerated 9.2, Warbiking, and some important guests at our booth | Sophos Blog

  5. Pingback: Sophos at Infosecurity Europe 2014: Credit card crime, Android malware, and a look inside SophosLabs | Sophos Blog

  6. Pingback: How safe are London’s Wi-Fi hotspots? See the results of our warbiking ride (Video) | Sophos Blog

  7. Pingback: How cyber safe is Las Vegas? Sophos ‘warbiker’ reveals wireless insecurity | Sophos Blog

  8. Pingback: Apple’s iOS 8 will help keep out Wi-Fi marketers and snoops, but not totally | Naked Security

  9. Pingback: Apple’s iOS 8 will help keep out Wi-Fi marketers and snoops, but not totally | ste williams

  10. Pingback: Sophos news in review: Sysmas prizes, Gameover do-over, and warbiking down under | Sophos Blog

  11. Pingback: Sophos on ABC World News: Free Wi-Fi networks have security risks (Video) | Sophos Blog

  12. Pingback: Sophos expert on the TODAY Show explains “how to protect yourself from hackers” | Sophos Blog

  13. Pingback: Sophos on the TODAY Show: That free open Wi-Fi could cost you your identity | Sophos Blog

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s