Public WiFi Warning Issued For All iPhone And Android Users
There's no subject guaranteed to rile cybersecurity experts more than public WiFi security — not even the mythological horrors of juice jacking. Any suggestion users should beware connecting to one of the tens of millions of airport, hotel, mall and coffee shop hotspots will always spawn a tirade of sarcastic posts on social media.
But sometimes the threat is real. Your devices can become 'serious liabilities,' the security team at Zimperium has just warned, 'especially during travel, when vigilance is low, free public-WiFi are everywhere, and attackers know exactly how to strike.'
Let's be very clear. Public WiFi is broadly fine. As long as the network is real, you are using encrypted apps or websites, and you don't download any software or overshare any information with the captive portal that pops up asking you to connect.
The FTC says as much: 'Because of the widespread use of encryption, connecting through a public Wi-Fi network is usually safe.'
But even government advice is divisive on this subject, and TSA has a different message: 'Don't use free public WiFi, especially if you're planning to make any online purchases. Do not ever enter any sensitive info while using unsecure WiFi.'
Zimperium says there have been 'over 5 Million Public Unsecured Global Wi-Fi networks found since beginning of 2025, with 33% of users connecting to public unsecured networks.' And that 'during travel, these risks multiply.'
Its warning is aimed at enterprises whose employees will be taking summer vacations with devices that connect to corporate email and other IT systems. 'Airports, hotels, ride-share hubs, and cafés all offer rich hunting grounds for attackers.'
Public WiFi warning.
Zimperium says 'employees, often multitasking or in a hurry, are far more likely to click, install, or connect without thinking twice.' The researchers list four types of attack that users should beware, even as they continue to connect on the go:
Attacks are especially prevalent overseas, but Zimperium also warns that 'major U.S. cities like Los Angeles, New York, Portland, Miami, and Seattle are seeing increased mobile malware activity—particularly during peak travel months.'
Staying safe is fairly straightforward — follow these five golden rules:
You should also avoid installing apps from outside official stores and ensure your OS is up-to-date with the latest security patches. If you're running one of the billion phones with an OS no longer eligible for these updates, you should go get an upgrade.
'Whether you're heading to Southeast Asia or a European business hub,' Zimperium says, 'mobile malware doesn't discriminate by location—but it thrives on opportunity. And summer travel creates plenty of it.'
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
2 hours ago
- Yahoo
American Airlines will let some passengers skip the customs line at this airport
Travelers connecting from the United Kingdom through American Airlines' main hub in Dallas will now have a much smoother travel experience. American is piloting a one-stop security program that lets connecting passengers clear customs at the gate and not need to have their bags re-screened before proceeding to another flight in Dallas. "One Stop Security is one of the most forward-thinking enhancements we can bring to international travel – and importantly, to our customers – as it delivers a level of convenience and time-savings that's never been available before to customers connecting from international flights," David Seymour, American's Chief Operating Officer, said in a statement. "With this game-changing program and thanks to our federal partners at (Customs and Border Protection) and (the Transportation Security Administration), along with (Dallas Fort Worth) Airport, our customers will spend significantly less time worrying about an onerous connection process and more time enjoying their travel journey,' he said. The airline expects the program to reduce connection times for eligible passengers by more than half. For now, the program is only a pilot available to passengers departing London Heathrow and connecting to American Airlines flights at DFW, but the airline said it "plans to explore opportunities to expand OSS to additional flights and U.S. airports in the future." American Airlines announced a similar program at London's Heathrow Airport in February, where passengers departing DFW and connecting onto international (non-U.K.) flights could avoid going through security re-screening in London. (This story was updated to clarify the security process.) Zach Wichter is a travel reporter and writes the Cruising Altitude column for USA TODAY. He is based in New York and you can reach him at zwichter@ This article originally appeared on USA TODAY: What to know about American Airlines' new One Stop Security pilot Solve the daily Crossword
Forbes
3 hours ago
- Forbes
Amazon Warns Attacks Underway—Update Your Account Now
Don't leave it too late — update now. Amazon has confirmed its users are now under attack. Fraudulent emails that seem to come from Amazon actually open 'a fake Amazon login page.' This steals your username and password, enabling attackers to gain access to your account. Those emails, Amazon warns, claim 'Amazon Prime subscriptions will automatically renew at an unexpected price,' and have been personalized with stolen data 'to appear legitimate.' The warning was issued to more than 200 million customers. If that's not worrying enough, the security at team at Guardio has also just warned that a separate attack is also surging — up 5000% in just two weeks. This time its texts instead of emails, and fake refunds instead of fake price increases. But the result is the same — a fake login page stealing your credentials to access your account. Amazon says it has taken down '55,000 phishing websites and 12,000 phone numbers' in the last year, 'as part of impersonation schemes.' But still the attacks come. Amazon has now issued '6 practical tips to help you stay safe and avoid impersonation scams.' America's FTC warns 'scammers are pretending to be Amazon again. This time, they're sending texts claiming there's a problem with something you bought.' But there is no refund. 'Instead, it's a phishing scam to steal your money or personal information.' Amazon is keen to stress that it invests heavily to prevent users falling victim to these attacks. Its responsiveness to these latest attacks is impressive. But the reality is that the only way for account holders to stay safe is to update the security on their accounts. You should do two things to secure your account and you should do both today. First, ensure you have 'two-step verification (2SV)' enabled from within the 'Login & Security' settings, which you can find when you click on 'Accounts & Lists.' The default option is to use your primary mobile number to send one-time passcodes by SMS. This is the worst form of 2SV. Instead you should use an authenticator app from a major provider — Apple's Passwords or Google's Authenticator for example. If you already have SMS 2SV enabled, 'you'll need to clear your two-step verification settings' to use an app instead. 'To do so, tap or click disable, then tick the box next to 'Also clear my two-step verification settings' on the window that appears. Lastly, re-enable two-step verification using your authenticator app as your preferred method.' With that done, your account is much safer. But there's still a chance an attacker can trick you into sharing a one-time passcode through a fraudulent sign-in page. So you should also add a passkey to your account and use that as your default. Passkeys are 'phishing resistant.' They link your Amazon sign-in to your physical device's security — for example, the biometrics or PIN on your phone. There is no 2SV code to steal or bypass or trick a user into sharing. You can find instructions on adding an Amazon passkey here. If you make these changes, it's not possible for an attacker to steal your username and password and gain access to your account. At a minimum they would need you to open your authenticator app and share the code. They will not know you're using an app. Passkeys are still better. And if you make a rule to never use anything but your passkey on one of your trusted devices, you cannot be compromised. Change those settings today, given that attacks are underway. Don't leave it too late.
Yahoo
5 hours ago
- Yahoo
Cisco Systems (CSCO): A Steady Performer Among the Dogs of the Dow
Cisco Systems, Inc. (NASDAQ:CSCO) is included among the 11 Dogs of the Dow Dividend Stocks to Buy Now. A technician in a laboratory, overseeing cutting edge cybersecurity solutions. Cisco Systems, Inc. (NASDAQ:CSCO) is widely recognized for its networking, cybersecurity, software, and cloud computing solutions. It produces routers and switches that use the Internet Protocol to move data across networks. Artificial intelligence has become a major growth area for Cisco Systems, Inc. (NASDAQ:CSCO), with AI-related revenue exceeding $1 billion in 2024. Cisco aims to at least double that figure in 2025. A key factor in this expansion has been its $28 billion acquisition of Splunk, completed last year, which is intended to strengthen customers' capabilities in networking, security, and AI. Cisco Systems, Inc. (NASDAQ:CSCO) reported strong earnings in its fiscal Q3 2025. The company's revenue came in at $14.15 billion, which showed an 11.4% growth from the same period last year. The revenue also beat analysts' estimates by $91.4 million. Orders for AI infrastructure from webscale clients surpassed $600 million, allowing the company to hit its $1 billion goal a quarter ahead of schedule. This strong performance in AI is driven by the strength of its secure networking solutions, strong global alliances, and the value it consistently delivers to customers. Cisco Systems, Inc. (NASDAQ:CSCO) generated an operating cash flow of $4.1 billion during the quarter, and it returned $1.6 billion to investors through dividends. In addition, it has raised its payouts for 18 consecutive years. Currently, it offers a quarterly dividend of $0.41 per share and has a dividend yield of 2.39%, as of July 26. While we acknowledge the potential of CSCO as an investment, we believe certain AI stocks offer greater upside potential and carry less downside risk. If you're looking for an extremely undervalued AI stock that also stands to benefit significantly from Trump-era tariffs and the onshoring trend, see our free report on the best short-term AI stock. READ NEXT: and Disclosure: None. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
