Public Wi‑Fi Safety: What’s Actually Risky (and How to Protect Yourself)

You’ve heard both versions:

• “Never use public Wi‑Fi. You’ll get hacked immediately.”
• “It’s fine. Everything is encrypted now.”

The truth is in the middle. A lot of traffic is encrypted today, but public networks still create opportunities for attackers — especially when you sign in to the wrong thing.

Here’s what’s actually risky and what to do in real life (airport, café, hotel).

What’s risky on public Wi‑Fi

1) Fake hotspots (evil twins)

Someone creates a Wi‑Fi network named like the real one:

• Cafe_Free_WiFi
• Airport WiFi

You connect, and they can intercept traffic or push you to fake login pages.

Fix: ask staff for the exact network name, or use your phone hotspot when unsure.

2) Captive portal phishing

Those “accept terms” pages can be copied.

Fix: if a portal asks you to sign in with Google/Microsoft/password, stop. A legitimate portal usually only asks to accept terms or enter a simple code.

3) Old protocols / unencrypted websites

HTTPS is common, not universal. If you visit a site without HTTPS, your data can be read.

Fix: don’t enter passwords on sites that aren’t HTTPS (look for the lock icon and the correct domain).

4) Device-to-device attacks on open networks

On poorly configured networks, other devices can see your device on the local network.

Fix: turn off file sharing / AirDrop discovery, and keep your firewall on.

What’s less risky than people think

“They can see everything I do”

Most modern sites use HTTPS, so they can’t read the content of your bank session just because you’re on Wi‑Fi.

But they can often see:

• Which domains you visit
• The fact that you’re using certain apps

And phishing risks still apply.

The practical protection checklist

Option A (best): use your phone hotspot

If it’s sensitive (banking, work email, admin dashboards), hotspot is usually the simplest win.

Option B: use a VPN (helpful, not magic)

A VPN encrypts your traffic from your device to the VPN provider. It helps against local snooping and some hotspot tricks.

• Choose a reputable VPN
• Don’t use random “free VPN” apps

Always do these:

• Disable auto-join for public networks
• Forget the network after you leave
• Keep your OS and browser updated
• Enable 2FA on your important accounts
• Use a password manager to avoid typing passwords into fake pages

If you think you connected to a fake hotspot

1. Turn off Wi‑Fi immediately.
2. If you entered a password, change it (from a safe network).
3. Check account security logs for new sessions.
4. Enable or re-check 2FA.

FAQs

Is hotel Wi‑Fi safer than a café?

Not necessarily. It’s still shared. Treat it like public Wi‑Fi.

Can I do banking on public Wi‑Fi?

If you must, use your hotspot or a VPN, and verify the domain carefully. Ideally avoid it.

What about “Private Wi‑Fi Address” on iPhone?

Keep it on — it reduces tracking across networks.

Related reading

• Phishing Emails in 2026: 9 Red Flags and What to Do

• Password Managers Explained: How to Choose One (and Set It Up Right)

• 2FA Done Right: SMS vs Authenticator Apps vs Passkeys (What to Use)

• AI + cybersecurity: what improves, what gets worse, and a practical defense plan

• About AviWebSquad

• Privacy Policy

• Disclaimer

Sources

• CISA: Using public Wi‑Fi safely