On holiday or on the move, it is tempting to quickly connect to free public Wi-Fi. It is easy, often fast, and feels harmless. Yet public Wi-Fi carries serious risks, precisely when you use work email or sensitive accounts. The good news: you need not become distrustful. With a few deliberate choices you greatly reduce the risk.
Why public Wi-Fi is risky
You share public networks with strangers, and that opens several avenues of attack:
- Eavesdropping: someone on the same network can read unencrypted traffic.
- Fake hotspots: a network with a familiar name ("Airport_Free_WiFi") may have been set up by an attacker.
- Interception: traffic is redirected to capture data or login details.
- Session hijacking: cookies and active sessions can be stolen to take over an account.
The safer choice: mobile data
Mobile data (4G/5G) is encrypted and therefore generally far safer than public Wi-Fi. Where possible, use your own mobile connection, or turn your phone into a hotspot for your laptop.
In most European countries roaming costs are limited, but always check your plan before you leave. Peace of mind about your connection is worth that small bit of preparation.
Practical tips for the road
A few simple habits reduce the risk considerably:
- Use mobile data for work email and sensitive accounts.
- Turn off auto-connect to Wi-Fi, so you do not unknowingly land on a fake network.
- Use a VPN if you do need public Wi-Fi; it encrypts your traffic.
- Check that websites use https and stop at certificate warnings.
- Avoid payments and logins to sensitive accounts over public Wi-Fi.
- Install updates before you leave, as many attacks exploit already-patched vulnerabilities.
How do you recognise an unsafe network?
Recognising a fake hotspot with certainty is difficult, and that is exactly why caution is the best stance. Be suspicious of generic names, and at a hotel or café always ask for the official network name rather than picking the first one you see.
What your device does itself also matters. Turn off auto-connect, so your phone does not connect out of habit to a network that merely imitates the name of a trusted one. That single setting prevents many unintended connections.
What this means for your organisation
Travel and remote work are part of modern working, so this topic belongs in your awareness programme. Give employees a short, concrete rule of thumb: use mobile data for work, and treat public Wi-Fi as a public space where you say nothing sensitive out loud.
Support that behaviour with technology. Where possible, make a corporate VPN available and explain why it exists. That way, connecting safely on the move becomes not a separate rule but an obvious habit.
Related articles
- Implementing multi-factor authentication in your organisation
- Medical personal data is highly sought after
FAQ
Is mobile data really safer than Wi-Fi?
Yes. Mobile data (4G/5G) is encrypted by default, while open public Wi-Fi can be read by anyone on the same network. For sensitive actions, mobile data is almost always the better choice.
Does a VPN help on public Wi-Fi?
Yes. A VPN encrypts your traffic, so no one on an insecure network can eavesdrop. It is the best solution when public Wi-Fi is unavoidable.
How do I recognise a fake hotspot?
With certainty it is hard. Be suspicious of generic names, ask on site for the official network name, and turn off auto-connect so your device does not connect unnoticed.
Can I check my work email on holiday via hotel Wi-Fi?
Prefer mobile data or a hotspot. If it must be hotel Wi-Fi, use a VPN and avoid logging in to sensitive systems or making payments.
What is the most important rule to give employees?
Use mobile data for work and treat public Wi-Fi as a public space. One clear rule of thumb works better than a long list of technical details.