Posts

Is Your Wi-Fi Network a Security Risk?

With Wi-Fi security, it’s easy to fall into the “out of sight, out of mind” trap. Your Wi-Fi router probably lives in a corner or closet, and of course, Wi-Fi’s radio waves are invisible. But the ease of connecting your devices to your Wi-Fi network means it’s equally as easy for a hacker to connect to your network and eavesdrop on your traffic. Or rather, it’s easy unless you take advantage of the security options available in every Wi-Fi router.

Before looking at those options, let’s discuss the importance of securing your wireless network. The fact is, we all send sensitive data over Wi-Fi and onto the Internet. That data includes passwords, financial information, and personal details, all of which could be used for identity or outright theft. For those who work at home, it may also include important corporate credentials and information. In addition, if your Wi-Fi network is open for everyone and has a bandwidth cap, you could be throttled or incur additional charges due to extra usage from someone using your network without your knowledge. Worse, someone could engage in illegal activity from your network, potentially putting you at legal risk.

Here are six ways you should secure your Wi-Fi network, plus another that’s usually not worth the effort. Exactly how you go about these tasks varies depending on your Wi-Fi router, but they should all be easy to accomplish.

1. Change Your Wi-Fi Router’s Default Password

Every Wi-Fi router has an app- or Web-based administrative interface where you can adjust settings, including security options. The first thing you should do when setting up a new Wi-Fi router is change the password for accessing that admin interface. (And if you didn’t do that when you set up your current Wi-Fi router, go do it now. Immediately. We’ll wait.) The default passwords are well known to hackers, who can use them to take over routers and turn off all the other security settings.

2. Change the Default Network Name (SSID)

Every Wi-Fi network has a name—technically an SSID, or Service Set Identifier. There’s no security benefit in changing it to anything in particular, but you should change it from the default name. That’s because default names often identify the router’s manufacturer, such as “Netgear” or “Linksys,” and some routers have known vulnerabilities or password styles that make it easier to break in. Of course, the main advantage of changing the network name is that it makes it easier to pick out from any other nearby networks.

3. Update Your Wi-Fi Router’s Firmware

Wi-Fi router manufacturers frequently fix security vulnerabilities and release new firmware versions. Check to make sure your Wi-Fi router has the latest firmware available, and if there’s an option for it to update its firmware automatically, turn that on.

4. Disable WPS (Wi-Fi Protected Setup) If Possible

When you connect a new device to your Wi-Fi network, you need to enter your Wi-Fi password. That’s entirely reasonable, and Apple devices automatically offer to share that password with your other Apple devices and other people in your Contacts. More generally, a technology called Wi-Fi Protected Setup (WPS) was designed to enable connecting without typing the Wi-Fi password, either by entering an 8-digit PIN or pressing a button on the router. The button is fine—no one can connect without physical access to the router. But the PIN is horribly insecure and can be brute forced with readily available cracking software. If your router supports WPS—not all do, happily—turn it off entirely.

5. Create a Guest Network

You’ll probably want to give visitors access to your Wi-Fi network so they can get to the Internet. The best way to do that is to create a guest network—a feature in nearly all Wi-Fi routers—separate from your main Wi-Fi network. It has a different name and password, and its traffic is isolated from yours, ensuring that even if a hacker were to access it, they wouldn’t be able to eavesdrop on your communications. It can have a simpler password since all it’s protecting is your bandwidth. One additional tip—put “Internet of Things” devices like smart appliances, video game consoles, and the like on your guest network to ensure they don’t provide access to your main network’s traffic if they’re hacked. You probably won’t want to do that with HomeKit devices, which will work better on the same network as your Apple devices.

6. Use Strong WPA2 or WPA3 Encryption

After changing the default admin password, this is the second-most important piece of Wi-Fi security advice. All traffic on a Wi-Fi network can (and should) be encrypted so hackers can’t eavesdrop with impunity. The first wireless security protocol was WEP (Wired Equivalent Privacy), which was commonly used from the late 1990s through 2004. Unfortunately, WEP is so easily broken today that it’s no longer considered secure. If you still use WEP, immediately switch to WPA2 (Wi-Fi Protected Access). There’s also WPA3, which is even more secure but is available only in hardware sold in the last few years.

Don’t Bother Hiding Your SSID

Finally, you may see suggestions that you should hide your Wi-Fi SSID, which prevents nearby devices from displaying it when they list available networks. That might seem like it would improve security, but all it does is prevent the sort of people who aren’t a threat anyway from seeing it. Anyone with the necessary software and skills to break into an unprotected or weakly protected Wi-Fi network can still detect and access a hidden network. They might even be more interested in what’s there, given that the network owner took the trouble to hide it. As long as you follow all the other advice in this article, there’s no benefit in hiding the SSID as well.

Bonus Advice: Use a VPN When on Public Wi-Fi Networks

Ensuring the security of your Wi-Fi network is essential, but what about public Wi-Fi networks in coffee shops, hotels, and airports? Because they’re open to anyone within range, they’re insecure by definition, and anyone on the network could theoretically see any other user’s traffic. Don’t panic. Most Web connections now use HTTPS, which encrypts traffic between you and the destination site (look for https at the start of URLs or a lock icon in the address bar of your Web browser). To ensure that all traffic is protected from prying eyes, use a VPN (Virtual Private Network), which creates an encrypted pipe from your computer to a VPN server elsewhere. Many organizations provide or even require VPN use so that traveling or remote employees can’t inadvertently use unencrypted connections. If your organization doesn’t have a VPN now but would like to set one up, contact us.

(Featured image by iStock.com/CASEZY)


Social Media: As more personal and work information passes through Wi-Fi networks, it becomes increasingly important that you follow this advice to secure your network.

Apple Is Driving the iPhone to eSIM: Here’s What You Need to Know

Perhaps the most surprising change in the iPhone 14 line, at least in the United States, was the shift from using removable SIM cards to eSIM.

SIM cards—SIM stands for Subscriber Identity Module—have been a fixture in the mobile phone world for many years because they provide the unique identification necessary to connect a subscriber and a plan with a phone. Because SIM cards are removable, you can use them to transfer an existing plan to a new phone, switch carriers, or enable temporary service while traveling—all by inserting the appropriate SIM card.

But SIM cards are small, fussy, and require physical interaction, so the industry came up with eSIM, or embedded SIM, where a programmable SIM is integrated into the circuitry of the phone. With eSIM, you can also activate a plan, transfer a plan to a new phone, or change carriers, typically without interacting with customer service. You also don’t have to acquire a physical SIM, figure out how to open your phone’s SIM tray, or insert the tiny SIM card in the correct orientation without dropping or damaging it. Plus, without a SIM slot and tray, iPhones have one less spot where water could get in and one less moving part that could break, and Apple doesn’t have to provide a SIM tool that you’ll likely lose (and replace with a paperclip).

Apple’s eSIM Transition

eSIM support is widespread among US carriers but less so internationally, which is why models of the iPhone 14 sold outside the US retain the SIM tray. The main place where lack of eSIM support is likely to be an issue—at least for the near future—is international travel. Historically, it was easy to purchase a pre-paid SIM card for a local carrier in the airport upon arriving, but that will no longer work for a US iPhone 14. The iPhone is sufficiently popular that international carriers are adding eSIM support, but it’s still possible to travel to a country where you can’t get local service with an iPhone 14 due to the lack of a SIM tray. Apple maintains a list of international carriers that support eSIM in various ways, including with pre-paid plans for travelers, and offers advice on how to use eSIM when traveling. (eSIM isn’t available at all in mainland China, but Apple’s list includes worldwide service providers that sell pre-paid data plans you can use when traveling in China and other countries without eSIM support.)

Apple has been moving toward eSIM for several years, starting with the iPhone XS, iPhone XS Max, and iPhone XR in 2018. Those iPhones—and every model up to the iPhone 14—had both a SIM tray and eSIM, which enabled the use of two separate cellular plans, each with its own phone number. With the iPhone 13, Apple enabled Dual SIM support with eSIM alone, and some carriers started giving customers the option to activate their primary service with eSIM, leaving the SIM tray or the second eSIM available for a second plan. Apple says you can store and switch among up to eight or more eSIMs, two of which can be active at any time, but it’s unclear how that works—an update to iOS might be necessary.

Cellular-capable iPads have had eSIM support since the seventh-generation iPad, fifth-generation iPad mini, third-generation iPad Air, first-generation 11-inch iPad Pro, and third-generation 12.9-inch iPad Pro.

How to Activate an eSIM

Precisely how you activate an account with eSIM varies by carrier and your situation, but Apple describes three basic options:

  • eSIM Carrier Activation: Some carriers can assign a new eSIM to your iPhone, making it easy to switch to a new iPhone or enable an eSIM-based plan after setup. eSIM Carrier Activation involves following a few simple onscreen instructions where you basically acknowledge that activation is happening. Make sure you can place a phone call afterward, and if you’re switching from a SIM card, remove it and restart your iPhone.
  • eSIM Quick Transfer: If you’re transferring a SIM or eSIM from an old iPhone to a new one and you have both at hand, you may be able to use eSIM Quick Transfer. It will provide instructions during setup, or you can initiate it after setup with Settings > Cellular > Add Cellular Plan and either selecting a plan from a list or tapping Transfer From Another Device. You can also convert a physical SIM to an eSIM on the same phone if your carrier supports eSIM Quick Transfer; check to see if Settings > Cellular has a Convert to eSIM option. If so, tap it and follow the instructions.
  • Scan a QR code or use a carrier app: Carriers that don’t support eSIM Carrier Activation or eSIM Quick Transfer initiate setup by providing either a QR code you can scan—during setup or afterward—or a custom app. Either way, follow the iPhone’s instructions to complete the setup.

Although we’ve become accustomed to swapping SIM cards in and out of our iPhones such that eSIM feels new and confusing, it should be a better overall solution that’s easier to set up, less error-prone, and more secure. There may be some short-term annoyance for US iPhone 14 owners who travel internationally, but we anticipate that will dissipate over time as international carriers start supporting eSIM.

(Featured image by iStock.com/fz750)


Social Media: Apple has gone all-in on eSIM, eliminating the SIM tray from iPhone 14 models sold in the US. What’s eSIM? Glad you asked—read on for the details of the technology and why it’s better than SIM cards.

Are You Paying Too Much for Internet or Cellular Connectivity?

We’ve recently worked with a few clients who were paying too much for their Internet or cellular service. Internet service providers (ISPs) and cellular carriers occasionally adjust their service plans to account for new technologies, economies of scale, changing competitive landscapes, and marketing efforts. Sometimes they’ll increase speeds or capabilities across the board, but more often, when they debut new plans, current customers are grandfathered into their existing plans, often without notification. Upgrading to a new, better plan is usually simple—first, check the plan details on your ISP’s or cellular carrier’s website. Then, if they look better or cheaper—or if you don’t remember what service levels you should be getting—call the company’s support line and ask if switching plans would be beneficial. Beware that they may try to upsell you on a more expensive plan, so agree to switch only if you’ll end up paying less or getting significantly more. Remember, more speed isn’t necessarily worthwhile—most people won’t notice the difference between 250 Mbps and 1 Gbps, for instance.

(Featured image by Adam Engst)

Not Getting Full 5G When You Should? Try a New SIM Card

If you’ve been moving your SIM card from phone to phone over the years, you might inadvertently be preventing your current phone from taking full advantage of 5G connectivity. Cellular carriers aren’t always forthcoming about what will and will not work, but at least in the US, AT&T, T-Mobile, and Verizon all make noises about how you need a 5G-capable SIM card to use the latest and greatest 5G technologies. The solution is simple: stop by a carrier’s store or contact them to ask for a new SIM. It should be free and will take just a minute to install once the carrier support people have configured it to your phone number. Precisely where the SIM card slot is on your iPhone varies a bit by model; Apple provides full instructions.

(Featured image by iStock.com/Kuzmik_A)

Easily Share Wi-Fi Passwords with Other People and Devices

You’re on vacation with your family, staying in an Airbnb, with multiple Apple devices to connect to the apartment’s Wi-Fi. Typing the password repeatedly would be a pain, but happily, Apple has added a password-sharing feature to all its operating systems. Once you enter the password on your iPhone, whenever someone else—or another of your devices—tries to connect to the Wi-Fi network, your iPhone will prompt you to share the password. Tap Share Password and then Done. It’s also a great way to share your home Wi-Fi password with a visitor. (For password sharing to work, both devices must have Wi-Fi and Bluetooth on and Personal Hotspot disabled, and you and the other person must have each other’s Apple ID email address saved in Contacts.)

(Featured image by Adam Engst)

When It Comes to Wi-Fi Networks, Sometimes It’s Better to Forget

It’s easy, particularly when traveling, to end up connecting to a Wi-Fi network that doesn’t provide Internet access, requires credentials you don’t have, or lacks access to the network’s printer. Unfortunately, once your iPhone, iPad, or Mac has connected to such a network, it may reconnect to it later, causing consternation when things don’t work. The solution? Whenever you realize a Wi-Fi network is worthless, forget it. (The network, that is.) On the Mac, open System Preferences > Network > Wi-Fi > Advanced > Wi-Fi, select the network in the list (you don’t have to be connected to it), click the – button, and click Remove. On an iPhone or iPad, when you’re connected to the offending network, go to Settings > Wi-Fi, tap the i button to the right of the current network, and tap Forget This Network on the next screen.

(Featured image based on images by iStock.com/fizkes and Elena Pimukova)

Reopening Your Office? Now’s a Great Time to Evaluate Your IT Infrastructure

As vaccination rates climb, many businesses are starting to think about reopening their offices and bringing back employees who have been working from home for the last year. That’s a big decision that will undoubtedly vary from company to company, but we’d like to suggest a few things to consider. Please contact us early in such deliberations so we can provide guidance before problems crop up.

Full Return or Hybrid Model?

Perhaps the biggest question firms will have to answer is if they’ll require all employees to return or if some can continue to work remotely. Many organizations have discovered that physical presence isn’t as important as they thought it was. In a post-pandemic world, many employees may prefer to continue working from home if they can, at least for a while.

If you decide on a hybrid model, you’ll want to put some thought into what technology you’ll need to enable hybrid meetings, with some people connecting remotely via videoconferencing software and others gathering in person. Large screens, specially mounted cameras, and dedicated speakerphone hardware may be necessary to conduct a hybrid meeting effectively.

With some workers remaining at home, it will also be important to ensure that everyone has appropriate access to on-premises servers. Obviously, that has been a problem for the last year as well, but it may be tempting to revert to old approaches upon reopening an office. That may not be effective in a new hybrid workplace, so check with us on cloud-based alternatives that could work better in the new world order.

Consider Your Physical Space

Particularly if you do decide on a hybrid model, it’s worth evaluating whether you need the same amount and type of space as you did before. There’s no single answer here. You don’t want to downsize your physical space only to discover in a few months that some of those employees who swore that they never wanted to come back feel that they’re missing out. Simultaneously, if your offices are a warren of small, poorly ventilated rooms, employees may be even more hesitant about returning.

Plus, your physical space is inherently related to your IT infrastructure, so don’t ignore the costs surrounding an office move. A new space might require pulling new Ethernet cables, testing Wi-Fi signal strength to ensure sufficient coverage, evaluating the cleanliness of the electrical power, and more.

We don’t mean to dissuade you from moving offices if that’s what makes the most sense for the future of your company, but talk to us before signing any new leases so we can help identify and head off any technical problems with the physical plant.

Finally, this isn’t related to IT, but if your existing office space has been entirely vacant for the last year, it’s worth reading the information that the Centers for Disease Control puts out to help employers create safe and healthy workplaces. Buildings don’t do well with prolonged shutdowns.

Does Network Infrastructure Need Updating?

Before you bring employees back, at least en masse, it’s also worth touching base with us about your IT infrastructure. If you’ve been limping along with sketchy Ethernet cabling, or if you have dirty power that could be damaging your Macs and peripherals, it’s a great time to consider addressing such problems. Pre-pandemic, attempting to install new electrical circuits or pull new network cabling might have been too disruptive, but with an office that’s empty or nearly so, such work can be done more quickly and cheaply.

Similarly, this could be a good time to replace aging computers, printers, or even phone systems. Such infrastructure upgrades and transitions can cause interruptions in normal times, but if you’re bringing people back, wouldn’t it be nice to have the office provide a better IT experience than it did before?

(Featured image by Shuki Harel from Pexels)


Social Media: If you’re having discussions about when and how to reopen your organization’s office, it’s worth thinking—and talking to us—about the role your IT infrastructure plays in such discussions. Learn more at:

The Fastest Way to Change Wi-Fi Networks in iOS 13

Historically, picking a new Wi-Fi network has required you to open the Settings app and tap Wi-Fi, forcing you to unlock your iPhone or switch away from what you were doing. In iOS 13, however, Apple added a better way to connect to a new Wi-Fi network. Open Control Center (swipe down from the upper-right corner on an iPhone X or later or an iPad; or up from the bottom on an earlier iPhone), press and hold on the network settings card in the upper-left corner to expand it, and then press and hold on the Wi-Fi icon to reveal a list of Wi-Fi networks. Tap one to switch to it.

(Featured image by Paul Hanaoka on Unsplash)