Overview
- CERT-FR issues a high-profile advisory urging users to fully disable Wi‑Fi when not required, citing vulnerabilities across wireless interfaces, operating systems and hardware.
- Germany’s BSI echoes the guidance for visits to Christmas markets, while earlier recommendations from CISA and Australian authorities are being resurfaced in coverage.
- Officials flag public hotspots as prime targets for Man‑in‑the‑Middle and “Evil Twin” schemes that can intercept data or deliver malware.
- Mitigations include switching off Wi‑Fi, Bluetooth and NFC when unused, disabling auto‑join, using a reputable VPN if public Wi‑Fi is unavoidable, and turning off iPhone Wi‑Fi in Settings rather than via Control Center.
- Authorities also warn about weaknesses in legacy 2G networks and point to practical steps such as automations on Samsung and iPhone or periodic reboots to shrink the attack surface.