I have read thru many of the discussion on this site and it has been very helpful
However, I have watched the YT content provider ads for VPN. Someone is using their PC in a coffee shop and behind them is the guy in dark glasses stealing their info. A VPN will prevent this. But do I need a VPN for the reasons below?
My biggest worry is someone stealing my info when I log on to pay bills when traveling.
If I am in the US, I turn off WIFI and log on to my bank using Verizon cellular and pay bills. I use facial recognition, a complex password, and 2FA (I know SMS is a problem).
Not sure how to do this securely outside the US. Would a VPN help in this scenario?
As far as privacy, I on line shop, check out restaurants, read newspapers and magazines. Is this worth worrying about?
Please be kind as I am trying to figure out the security especially for finances. Thanks!
Regarding VPN-to-US - that’s pretty reasonable.
Like I know IT-companies always use some sort of VPN secured connection for their workers.
My biggest worry is someone stealing my info when I log on to pay bills when traveling.
A VPN doesn’t really help much with this. What works:
-
HTTPS
-
2FA
-
don’t let someone look over your shoulder as you log in
-
have latest software updates, mainly for browser
-
don’t ignore or bypass any certificate or security warnings in the browser
-
don’t install any certificate provided by a dodgy source, such as owner of the Wi-Fi
The last three should prevent any MITM attack.
Sure, a VPN is added protection against MITM, but again you have to do the items even when using VPN.
Every site is https now browsers won’t allow non https connections unless there is some setting to disable. At a minimum a VPN for any public wifi. Ideally for banking a connection to a trusted access point like your phone hotspot with VPN.
The guy in dark glasses is to demonstrate a Man-in-the-middle attack
I assumed it was shoulder-surfing, and a VPN won’t help against that.
Thanks for the explanation of the man-in-the-middle.
In the MITM scenario you describe, if I use my bank app, wouldn’t the attack fail?
They do that because their workers are tunneling directly into the corporate network. Generally speaking, commercial VPN’s are not used for this.
If that makes sense. Thinking about doing a 30 day trial if I travel outside the US. THX
Please correct me if I’m wrong, in addition to all this it would be good for him to use some linux clean distro through a virtual machine, like virtualbox, only for sensitive transactions like online banking. Both firewalls activated in host Windows (I assume) and guest Linux. In host Linux, use a safe web browser like Brave.
The cherry on top of the cake would be using a screen privacy filter:
https://www.amazon.es/3M-Bright-Screen-Privacy-Filter/dp/B0C3WTJVJC
This is very helpful. Thx
The way you outlined this is very helpful. I may pass on a VPN right now. Thx
However worth noting that while you hide your acrivity from Verizon, you instead show it to VPN provider. So it boils down to who you trust more.
Sounds like overkill to me. VM if you think you will or already have downloaded something malicious.
Makes sense. If I use my Verizon cellular once or twice in Europe for instance to bank, Verizon is going thru partner cellular networks so that couldn’t be secure, right? Or not?
Yeah you are right. I am just tired of all the $10 or $20 subscription services and was trying to avoid one more. Thanks again.