Lock Down Banking Access After an Evil-Twin Wi-Fi Login
Did you know that sneaky fake Wi-Fi networks, often called "evil twins," can trick you into revealing your banking details? If you've ever connected to a public Wi-Fi network and then logged into your bank, there's a small chance you might have fallen victim to one of these traps. This guide will walk you through what to do if you suspect your banking information has been compromised this way.
Act quickly! The sooner you take action, the better your chances of preventing serious financial loss.
Recognising an Evil Twin
Evil twin Wi-Fi networks are designed to look exactly like legitimate public Wi-Fi, such as those found in cafes, airports, or hotels. They trick your device into connecting to them, and then, when you try to log into your bank, they steal your usernames and passwords. It can be very difficult to spot one of these fakes.
Even if you didn't notice anything unusual at the time, it's wise to be vigilant after using public Wi-Fi and logging into sensitive accounts.
- Unexpectedly slow internet speeds after connecting to public Wi-Fi.
- Your device asks you to log in to a Wi-Fi network you've used before, when it usually connects automatically.
- Browser warnings about an insecure connection when visiting a website you know is secure (like your bank's).
Disconnect Immediately and Change Your Passwords
If you suspect you've been on an evil twin network, the first thing to do is disconnect from that Wi-Fi. Switch to your mobile data or a trusted home network. Then, it's a race against time to change your banking passwords and any other passwords you might have used while connected to the suspicious network.
Use a strong, unique password for each account, and consider using a password manager to help you keep track of them.
- Turn off Wi-Fi on your device immediately.
- Change your online banking password. Do this from a secure and trusted internet connection (e.g., your home Wi-Fi or mobile data).
- Change passwords for any other important accounts (like email or social media) you might have accessed.
Contact Your Bank and Set Up Alerts
It’s crucial to inform your bank about the potential compromise. They can place extra monitoring on your accounts and advise you on the next steps. They might suggest cancelling your cards and issuing new ones, even if no suspicious activity has been detected yet.
Setting up transaction alerts will help you spot any unauthorised activity quickly in the future.
- Call your bank's fraud department straight away. You can usually find the number on the back of your bank card or on their official website (make sure it's the correct, official site).
- Ask your bank to monitor your accounts for unusual activity.
- Set up SMS or email alerts for all transactions, or for any transactions above a certain amount.
Review Your Accounts and Devices
After changing passwords and contacting your bank, take some time to thoroughly review your bank statements and other financial accounts for any unauthorised transactions. Also, it's a good idea to scan your devices for any malicious software that might have been installed without your knowledge.
While evil twins primarily steal login details, sometimes they can be used to deliver malware.
- Check all recent transactions on your bank statements and credit card statements carefully.
- Look for any new, unfamiliar payees or changes to your personal details (like address or phone number) in your online banking profile.
- Run a full scan with reputable antivirus or anti-malware software on any device you used while connected to the suspicious Wi-Fi.
Key takeaway
Falling victim to an evil twin Wi-Fi attack can be unsettling, but by acting quickly and following these steps, you can significantly reduce the risk of financial loss. Always be cautious when using public Wi-Fi, and remember that vigilance is your best defence. If in doubt, always use your mobile data for sensitive transactions.