New Yorkers toil in a city of haggard indifference. Heading off to work each morning, coffee in hand, our shirts are ironed. At the office, employee badges and two-step email verification grant us access for the day. Internal documents are shared across WiFi protected by long, complex passwords. At work, we are safe. We step outside for lunch or coffee or the midday stroll. Then we become targets.

On a balmy spring afternoon, Ian Amit stands at a counter in a Starbucks in Midtown Manhattan. As customers check Facebook, Twitter and Gmail through the free and open AT&T Internet, Amit monitors it all. One keystroke could activate a script that would capture all the information passing through the network. He could, but he refrains. It is not ethical, and in his words, “less legal.”

As the director of security services for IOActive, a firm that offers comprehensive computer security services, Amit is a problem solver. Today's demonstration at the Starbucks is a…