English
Spanish
French
German
Italian
Portuguese
Russian
Chinese (Simplified)
Hindi
Japanese
Experts are sounding the alarm about a setting on the iPhone that can make users vulnerable to hackers.
The WiFi setting called “Auto-Join” automatically connects phones and other devices to public hotspots and networks at places such as coffee shops, bars and restaurants.
The feature definitely seems convenient, since users don’t have to go searching for a WiFi network themselves — but it also opens the door to hackers, potentially giving them access to personal information like passwords, photos and bank accounts.
If a hacker is hosting a hotspot in a location, your phone could potentially automatically join and connect to their network, granting access to the cybercriminal to your data.
Hackers often will setup WiFi networks with names that appear similar to one you would assume is legitimate, such as “Cafe1,” with the hope that you’ll mistakenly connect to it.
Once connected, cybercriminals can use online victim profiling to steal identities and data from anything you type online. They can also install malware onto the device, allowing them to have access to your data — even after you disconnect.
Leaving WiFi on makes the device vulnerable to a Key Reinstallation Attack — also known as a “KRACK” attack — which manipulates protected access through encryption keys and establishes a secure connection that allows data to be stolen over the network when in close range.
The National Security Agency (NSA) has advised iPhone users against connecting to public WiFi in general, adding that those who are connected to an outside network should turn off their Bluetooth if not in use.
Leaving Bluetooth on can lead to a “BlueBorne” attack, which is when a hacker takes control of the device without any interaction from the phone’s user. This can result in cyber espionage, data theft or a ransomware attack.
Turning off the “Auto-Join” setting is fairly easy: Open Settings on the iPhone, select WiFi and scroll until you see to “Auto-Join Hotspot.”
There will be three options: Never, Ask to Join or Automatic. Experts warn against choosing Automatic, advising users to instead select either Never or Ask to Join.
For an added level of security, tech experts also suggest disabling the Auto-Join Networks setting, which automatically connects devices to known networks.
To ensure that your phone doesn’t connect to outside networks, be sure to turn off your WiFi before leaving the house.
Additionally, if you temporarily connect to a network outside your home that you don’t plan on using again, you can remove it by tapping on the network and selecting Forget This Network.
On the other hand, there’s also an option to allow your device to Auto-Join that specific network once connected if you plan on using it on a regular basis.
The NSA also advises iPhone users to reboot their devices every week to prevent hackers from being able to manipulate open URLs and running a code that will install malware. Turning the phone completely off will reset all open web pages and apps, as well as log out of bank accounts.
