526/68 Tuesday, December 16, 2025
France’s Computer Emergency Response Team (CERT-FR) has issued cybersecurity guidance advising iOS and Android smartphone users to turn off Wi-Fi when it is not needed in order to reduce the risk of cyberattacks. CERT-FR notes that modern smartphones have a broad attack surface, spanning wireless interfaces, applications, operating systems, and even hardware layers. As a result, these devices are prime targets for cyber-espionage due to their widespread use and the large volumes of personal data they store.
CERT-FR highlights that vulnerabilities in communication protocols such as Wi-Fi, Bluetooth, NFC, and cellular networks can be exploited to intercept data, interfere with communications, or implant spyware on devices. Of particular concern are zero-click exploits, which allow attackers to compromise a device without any user interaction-no clicking links, opening files, or taking action-while leaving minimal forensic traces. The report “Mobile Phones – Threat Landscape Since 2015” also emphasizes that public Wi-Fi networks or poorly configured wireless networks are especially vulnerable to Man-in-the-Middle (MitM) attacks, which can enable data interception, manipulation, or malware distribution.
To mitigate these risks, CERT-FR recommends that users disable Wi-Fi when not in use, turn off auto-connect features, avoid public Wi-Fi networks whenever possible, and use a VPN when connecting is unavoidable. Additional best practices include installing apps only from official sources, reviewing app permissions, keeping the operating system up to date, and restarting devices periodically. CERT-FR stresses that reducing unnecessary wireless exposure is a basic yet highly effective measure for lowering the risk posed by today’s increasingly sophisticated cyber threats.
