Fake WiFi networks, juice jacking; UAE experts warn of cyber threats travellers face
<p>For many travellers, connecting to a <a href="https://www.khaleejtimes.com/uae/wifi-breaches-2025">free wifi network at an airport</a> or charging a phone at a public port is almost second nature. However, for cybercriminals, it is the perfect moment to strike. Experts warn that travellers heading abroad must stay alert to avoid falling victim to scams. According to Rafal Hyps, CEO at travel risk management firm Sicuro Group, cybercriminals thrive on the distractions people face while travelling. “The mix of urgency and lowered awareness makes travel one of the most profitable <a href="https://www.khaleejtimes.com/uae/nationwide-fraud-scam-cybercrime-awareness-campaign">environments for basic cyber scams</a>, especially for travellers accustomed to the safety of the UAE,” he said. From fake wifi networks and fraudulent payment links to phishing emails and “juice jacking”, a range of cyber threats can compromise a traveller’s device. Logging into vacation homes or car rentals with their own accounts can also create unwanted problems. Haider Pasha, CSO EMEA at Palo Alto Networks pointed out the biggest mistake holidayers make is assuming travel environments are trustworthy. “The best habit is <a href="https://www.khaleejtimes.com/uae/digital-hygiene-clearing-apps-crucial-before-travelling-2025">basic cyber hygiene</a>: verify networks, limit permissions, and keep devices updated,” he said. “Scammers often exploit distracted travellers with phishing messages, fake booking confirmations and refund scams that create urgency and prompt clicks.” </p><p>Experts say <a href="https://www.khaleejtimes.com/uae/qr-code-scam-sharjah-police-experiment">fake or lookalike wifi networks</a> are common in busy travel areas because they are easy to set up and hard to spot at a glance. “Attackers name networks to resemble legitimate ones and rely on travellers connecting out of habit,” said Rafal. “If a login page asks for credentials that you do not normally use for wifi, requests payment unexpectedly, or pushes you to download an app or profile, disconnect and use cellular data instead.” He pointed out that public networks still create risk through redirection and deception and that for anything sensitive such as banking, email, or password manager access, travellers must use cellular data or their own hotspot. “An important habit you need to apply is verifying if you are in the real app or real website before you log in,” he said. Haider also cautioned about public USB charging stations. “They pose a <a href="https://www.khaleejtimes.com/uae/79-percent-uae-travellers-cyber-data-theft">threat known as 'juice jacking</a>' which allows attackers to install malware or extract data,” he said. “Travellers should use their own chargers or power-only USB cables.” </p><h3><strong>Stolen phones</strong></h3><p>One of the biggest threats when travelling abroad is having their phone stolen, according to Haider. “Attackers may attempt to access banking apps, emails and cloud accounts by exploiting weak passcodes, unlocked devices, sim cards and lock-screen notifications, making it critical to remotely lock or wipe the device, change passwords, and notify banks and mobile providers,” he said. </p><p>Rafal said it was important to act fast. “Simple things you can do yourself begin with using Find My iPhone or Android Find My Device to mark the phone as lost, lock it, and erase it if recovery is unlikely,” he said. “Change your email password first, then your Apple ID or Google account password, then banking and key accounts.”</p><p>He added that it was important to suspend the SIM and freeze bank cards and block transfers and also call their employer’s IT to notify them and follow their advice. “If you use an authenticator app, assume it is compromised until you have re-secured your accounts,” he said. </p><p>Haider cautioned against leaving personal data behind in rental cars, hotel TVs, and systems. “All information including contacts, call logs, streaming accounts and navigation history, all of which should be wiped out before checkout,” he said. </p><p>Rafal concluded by saying travel should not be treated like home. “Harden the phone before you leave and keep sensitive activity off public networks,” he said. “Use a strong passcode, enable biometric lock, shorten auto-lock time, and restrict lock-screen previews for messages. Use cellular data or your own hotspot for banking and email and verify actions inside official apps rather than through links in messages. Finally, do not use the same user and password for more than one login. It’s the simple things that create the biggest issues.”</p><p> </p><p><br> </p>