MiFi® Security FAQ

January 2010

Recent media reports indicate that there are potential security threats using MiFi®, is this true?
Data received or sent through the MiFi® device is secure. The potential for limited manipulation of the MiFi® exists only when a user surfs to a malicious web site, stays connected to that site and the GPS in the MiFi® is activated. In this case, a hacker could potentially change MiFi® settings, but the hacker would only obtain location information about the MiFi® device and would only have such information while the MiFi® stayed connected to the malicious site. Even while a MiFi® user was connected to a malicious site, the hacker would NOT obtain access to the user's personal data, the user's PC or any other devices connected to the MiFi®. Once the user leaves the malicious web site no malware remains on the MiFi® device.

Are there ways to prevent this problem?
For someone to manipulate your MiFi® you would have to be browsing a site that uses malicious code and have the GPS activated. You should always use standard Internet safety precautions, such as keeping your anti-virus and browser software updated, turning on the browser anti-phishing filters, and clicking only on links from other people or sites that you know and trust. We also recommend that you log off of your MiFi® device at the end of each session.

What is Novatel Wireless going to do to safeguard against this potential threat?
We believe the risk from this potential threat is very small; however, the Company will provide a software patch for its carrier customers to implement in early February.

Can MiFi® be remotely accessed by an unauthorized person when turned on but not connected to the Internet? No. The limited manipulation of the MiFi® could only occur if the MiFi® user surfs to a malicious web site And has the GPS activated.

Could there be other security threats?
Novatel Wireless is constantly scanning for new security threats and makes security features and upgrades available on a regular basis.