My main suggestion, as always, is a VPN: whether you rent a VPN connection from WiTopia.net or other such VPN hosts, have a corporate connection, or set up your own. Securing services is second-best, like encrypting email, and using methods to force SSL connections.
Doing nothing is no longer a reasonable option for public hotspot use unless you want a fair degree of certainty that anyone could easily spoof your identity.
Comcast Launches 2,000 Hotspots for Subscribers
Atom Feed (xml)