Skip to content
ScamSniff
← Back to Home

protect your devices

Public Wi-Fi Is Dangerous — Here's What to Do About It

6 min readBy ClearShield Team

That free Wi-Fi at Starbucks, the airport, your doctor's waiting room, or the hotel lobby? It is one of the easiest ways for a stranger to see everything you do online. And most people connect to it without a second thought.

Here is the problem: public Wi-Fi networks are almost always unencrypted. That means the data flowing between your device and the internet is visible to anyone on the same network with the right (freely available) software. Your emails, your bank login, the websites you visit, the searches you type — all of it can be intercepted.

The good news is that protecting yourself takes about 60 seconds. Here is what is actually happening on public Wi-Fi and exactly what to do about it.

What Hackers Can Do on Public Wi-Fi

Man-in-the-Middle Attacks

A hacker sits between you and the Wi-Fi router, intercepting your data as it passes through. They can see login credentials, read emails, and even modify web pages before they reach your screen — for example, replacing a real banking login page with a fake one.

Evil Twin Networks

A hacker creates a Wi-Fi network that looks identical to the real one. You see "Starbucks_WiFi" and "Starbucks_WiFi_Free" — one is the real network, one is run by a thief. If you connect to the wrong one, every byte of your internet activity goes through their device first.

Packet Sniffing

Free, legal software like Wireshark allows anyone on the same Wi-Fi network to capture data packets flowing across it. On an unencrypted network, those packets can contain usernames, passwords, and personal information in plain text.

Session Hijacking

Even if a hacker cannot see your password, they can sometimes steal your session cookie — the small file that keeps you logged in after you enter your password. With that cookie, they can access your account without ever knowing your password.

The One Thing That Fixes All of This

Every single attack above is defeated by one tool: a VPN (Virtual Private Network).

A VPN encrypts all of your internet traffic before it leaves your device. Even if a hacker intercepts your data on a public network, all they see is scrambled nonsense. They cannot read your emails, see your passwords, or capture anything useful.

Think of it this way: without a VPN, using public Wi-Fi is like shouting your bank password across a crowded room. With a VPN, you are whispering it through a soundproof tunnel that only your bank can open.

One tap and you're protected on any network

NordVPN encrypts everything on your phone, tablet, and laptop — automatically. Open the app, tap 'Quick Connect,' and your entire connection is secured. It also blocks malicious websites and phishing links with built-in Threat Protection.

Learn More

How to Stay Safe on Public Wi-Fi (Complete Checklist)

Before You Connect

  1. Turn on your VPN first. Connect your VPN before you join the Wi-Fi network. This way, your very first data packet is already encrypted.
  2. Verify the network name. Ask a staff member for the exact Wi-Fi name. Do not guess — hackers count on you connecting to whatever looks right.
  3. Forget the network after. Once you are done, go to your Wi-Fi settings and tell your phone to forget this network. This prevents your device from automatically reconnecting next time you walk by.

While Connected

  1. Never log into financial accounts without a VPN. No VPN? No banking. No investment accounts. No shopping with your credit card. Period.
  2. Look for HTTPS on every website. The padlock icon in your browser means the connection between you and that specific website is encrypted. Without a VPN, this is your only protection — but it only covers that one site, not your entire connection.
  3. Turn off auto-connect. Go to your phone's Wi-Fi settings and disable the option that automatically joins known networks. You want to choose when and where you connect.
  4. Disable file sharing and AirDrop. On a public network, open file sharing invites strangers to send files to your device — which can include malware. Turn off AirDrop (iPhone) and Nearby Sharing (Android) while on public Wi-Fi.

After You Disconnect

  1. Log out of any accounts you accessed. Do not just close the tab — actually click "Sign Out." This invalidates the session cookie that a hacker could potentially hijack.
  2. Run a quick antivirus scan. If you spent significant time on public Wi-Fi without a VPN, run a scan when you get home. Better safe than sorry.
  3. Check your accounts. Glance at recent activity on any accounts you accessed. Most banks and email providers show "recent login activity" with device and location information.

Specific Situations

At the Airport

Airports are one of the highest-risk environments for Wi-Fi attacks because thousands of people are connecting to the same network, and many are doing sensitive things — booking travel, checking email, accessing work systems. Always use a VPN. If you do not have one, use your phone's cellular data instead of the airport Wi-Fi.

At Hotels

Hotel Wi-Fi requires a room number and last name to connect, which gives a false sense of security. The network itself is still shared and typically unencrypted. Use your VPN for everything, especially if you are doing work or accessing financial accounts.

At Coffee Shops and Libraries

These are casual environments where people let their guard down. Remember: the person at the next table could be running a packet sniffer right now. If you would not want them reading your screen over your shoulder, do not send it unencrypted over the same Wi-Fi network.

At Doctor's Offices and Hospitals

You often have no choice but to wait, and the Wi-Fi is free. But medical office networks frequently have poor security configurations. Do not access any sensitive accounts. Use cellular data or your VPN.

What If You Don't Have a VPN?

If you genuinely cannot get a VPN right now, here is your fallback strategy:

  • Use cellular data instead. Your phone's 4G/5G connection is encrypted between your phone and the cell tower. It is significantly safer than public Wi-Fi.
  • Create a mobile hotspot. Turn your phone into a personal Wi-Fi hotspot and connect your laptop to that instead of the public network. You are now using your cellular connection, not the public one.
  • Only visit HTTPS sites. Never visit a site without the padlock icon while on public Wi-Fi without a VPN.
  • Do not log into anything important. Save banking, email, and shopping for when you are home or on cellular data.

Key Takeaways

  • Public Wi-Fi is inherently unsafe — hackers can intercept your data with free, legal tools
  • A VPN encrypts everything and defeats all common Wi-Fi attacks
  • Turn on your VPN before connecting to any public network
  • Verify the network name with staff — evil twin networks look identical to real ones
  • Never do banking or shopping on public Wi-Fi without a VPN
  • When in doubt, use cellular data instead

The cost of a VPN is less than a single cup of coffee per month. The cost of having your bank account drained through a coffee shop Wi-Fi attack is considerably higher.

Get our free weekly security tips

Simple steps to stay safe — whether you're at home, at the airport, or at your favorite coffee shop. Join 3,000+ readers.

Affiliate Disclosure: This article may contain affiliate links. If you make a purchase through these links, we may earn a small commission at no extra cost to you. We only recommend products we genuinely believe in. This helps support our work and allows us to continue providing free content.

public wifiwifi safetyVPNtravel securityonline safety