Finally, as some people have mentioned in the comments, you should be careful about trusting open networks. Once you have signed in, don’t do anything sensitive unless the entire site uses HTTPS. People can steal your session cookies even if your username and password were encrypted, so just having HTTPS on the login page is inadequate.
Credit:stackoverflow.com‘