UAE cybersecurity experts warn travellers about digital dangers such as fake public WiFi networks and juice jacking, urging caution to protect personal data and devices while travelling.
Public WiFi scams and juice jacking: UAE experts caution travellers about cyber risks
Many travelers routinely connect to complimentary airport Wi-Fi or use public charging stations without considering the risks. However, these seemingly harmless actions can be exploited by cybercriminals. Experts advise staying vigilant when traveling abroad to avoid falling victim to scams.
Rafal Hyps, CEO of travel risk management company Sicuro Group, explains that cybercriminals take advantage of travelers’ distractions. “The combination of urgency and reduced attention makes travel an ideal setting for common cyber scams, particularly for those used to the security of the UAE,” he said.
Common digital threats include fake Wi-Fi networks, phishing emails, fraudulent payment links, and “juice jacking,” which can compromise devices. Even logging into personal accounts for vacation rentals or car bookings can pose risks.
Haider Pasha, CSO EMEA at Palo Alto Networks, emphasized that travelers’ biggest error is assuming travel environments are safe. “Practicing basic cyber hygiene—checking network authenticity, limiting app permissions, and keeping devices updated—is essential,” he noted. “Scammers frequently exploit distracted travelers with phishing attempts, fake booking notices, and refund scams that create urgency and prompt hasty clicks.”
Common Cyber risks at airports
Experts warn that fake or imitation Wi-Fi networks are widespread in crowded travel locations because they are simple to create and difficult to distinguish from legitimate networks. Rafal Hyps explained, “Attackers often give networks names that mimic real ones, counting on travelers to connect out of habit. If a login page asks for unusual credentials, requests unexpected payment, or prompts app or profile downloads, disconnect immediately and switch to mobile data.”
He added that public Wi-Fi remains risky due to redirection and deceptive tactics. For sensitive activities like online banking, email, or accessing password managers, travelers should rely on cellular data or their personal hotspot. “Always confirm you are using the authentic app or official website before entering any login information,” he advised.
Haider Pasha also highlighted the dangers of public USB charging points. “These stations can be used for ‘juice jacking,’ where attackers install malware or steal data,” he said. “It’s safer to use your own charger or power-only USB cables when on the go.”
Stolen Phones
Haider Pasha highlighted that one of the greatest dangers while traveling internationally is phone theft. “Thieves can exploit weak passcodes, unlocked devices, SIM cards, and lock-screen notifications to access banking apps, emails, and cloud accounts. It’s essential to remotely lock or wipe your device, change passwords, and alert your bank and mobile provider immediately,” he said.
Rafal Hyps emphasized the need for swift action. “Start by using Find My iPhone or Android Find My Device to mark the phone as lost, lock it, and erase data if recovery seems unlikely,” he advised. “Next, update your email password, followed by your Apple ID or Google account password, and then your banking and other important accounts.”
He also recommended suspending the SIM card, freezing bank cards, blocking transfers, and informing your employer’s IT team to follow their guidance. “If you use an authenticator app, assume it has been compromised until all accounts are secured again,” he added.
Erasing Data
Haider Pasha cautioned travelers about leaving personal information on shared devices such as rental car systems, hotel smart TVs, or other public platforms. “Make sure to erase all data—including contacts, call logs, streaming accounts, and navigation history—before checking out,” he advised.
Rafal Hyps added that traveling requires extra vigilance compared to being at home. “Prepare your phone before your trip and avoid conducting sensitive tasks on public networks,” he said. “Set a strong passcode, enable biometric locks, shorten auto-lock times, and limit message previews on the lock screen. For banking and email, rely on cellular data or a personal hotspot, and always verify actions within official apps rather than clicking links in messages. Never reuse usernames or passwords across accounts—these simple precautions prevent major problems.”
