Cybersecurity Considerations for Travelers
The College always encourages vigilant cybersecurity awareness no matter where you are, but especially when traveling. Whether you are planning a domestic or international trip, it is imperative to educate yourself on how to protect your digital assets and data so you can stay safe while traveling.
If you have questions before or after traveling, please contact the IT Service Desk.
If you don’t need the device, don’t take it!
- Back up all information then remove any sensitive or confidential data from the device
(specifically data related to College business).
- Microsoft OneDrive and Teams are preferred for storing College data whether travelling or not.
- Never store passwords on any device without a password protected and encrypted password manager.
- Avoid using public computers in hotels, restaurants, and other public places.
- If you absolutely must use a public computer (for personal use) be sure to NEVER save any details on public machines.
- Absolutely do NOT use public access machines for College business!
- Log out at the end of your session, clear your history/cache, and close the browser.
- NEVER log into online banking, social media accounts, or any other personal sites on a public computer.
Assume everything you do on your devices is monitored
Information sent over a network may be monitored. It is always best practice to assume
you are being monitored and adjust your activity accordingly. This includes hotels,
public places, and internet cafes.
Do not use public Wi-Fi networks
If you access a free public Wi-Fi network, such as those at airports, coffee shops,
restaurants, and hotels, you do not know who is monitoring or configured the settings
for that network. Public Wi-Fi connections cannot be trusted and could compromise
your device if you attempt to connect to them. Using the personal hotspot feature
of your smartphone to connect your personal devices to the internet is the safest
way to use a Wi-Fi connection.
Social Media
It is natural and fun to share your vacation plans and exciting events on social media,
however you do not know who will be reading your posts. Avoid announcing that you
are away from home as this also means your house is possibly vacant. Consider posting
your vacation adventures once you return home.
Keep your devices with you at all times
Always keep your devices in sight. If customs or airport officials take your devices
out of view, consider those devices compromised. Do not transport devices in checked luggage.
Do not use unknown storage devices
Do not plug anything into your devices that you did not bring with you, including
thumb drives. Avoid public charging stations at airports and hotels as malicious software
could be loaded onto your devices and allow your data and account to be compromised.
Be aware of your surroundings
Be careful when entering information like a username and password into your device.
People nearby could be watching in an attempt to steal your information.
Change your passwords
Change your password for all services that you have accessed during travel, such as
email, social media account, or financial sites.
Before You Leave
- Know MC’s policies for College-issued devices and the use of institutional data:
- Pack privacy screen filters, portable chargers, and country-specific plug adapters
- Consult with IT Security about technology concerns
- Make sure your operating system, applications, and antivirus software is up to date.
- Enable VPN access:
- NOTE: College VPN only protects sessions connected to the College network. It does not protect you when connecting to websites on the Internet.
- Back up your data prior to travel and only take data you need
- Create complex passwords
While Traveling
- Protect mobile devices by keeping them secure, locked, and hidden when not in use
- Report stolen devices immediately
- Use privacy screen filters
- Use your own chargers
- Do not use courtesy computers in business centers, hotels, and other public places
- Disable services such as Wi-Fi access points, Bluetooth devices, and GPS when not needed
- Use VPN access whenever possible
- NOTE: College VPN only protects sessions connected to the College network. It does not protect you when connecting to websites on the Internet.
- Do not connect to wireless hotspots or unsecured networks
- Use Two-Factor Authentication (2FA) whenever possible
- NOTE: The Duo Mobile App can generate a passcode even without service. If you choose not to take your mobile phone, you may request a hardware token for travel.
- Do not install software updates or patches from unknown sources.
- Choose private browsing when searching websites
- Clear your internet browser of history, caches, and cookies after each use
Upon Returning
- Review banking and credit card statements for unusual transactions
- Resume weekly or monthly data check and back up routines
- Assume Compromise
- All devices with which you traveled should be considered compromised upon your return. They could contain malicious software that you do not want to introduce to the College's network or your home network. The safest course of action is to have the device securely erased and rebuilt, either from an existing backup or through a new installation of the operating system.