• Home
• Technology

 A comprehensive security audit conducted by Kaspersky has revealed that approximately 17% of public Wi-Fi networks in the three Mexican cities hosting the FIFA World Cup 2026™—Mexico City, Guadalajara, and Monterrey—suffer from weak or entirely absent encryption schemas. This exposure places traveling fans at severe risk of personal and financial data theft, while the adoption rate of the latest, most secure WPA3 protection protocol barely reached 2.9% across the audited regions.

Statistical Breakdown of Network Access Points The cybersecurity assessment arrives as Mexico prepares to host multiple World Cup fixtures kicking off on June 11, 2026, which are projected to draw hundreds of thousands of international tourists. Experts from Kaspersky’s Global Research and Analysis Team (GReAT) executed an expansive sweep of the public wireless infrastructures that fans will likely rely on during the tournament lifecycle. The telemetry analyzed 69,473 unique public Wi-Fi access points, alongside 84,588 signal logs harvested from primary thoroughfares and high-traffic fan zones across the three metropolitan hubs.

The empirical findings show that roughly one out of every six public networks lacks foundational security protocols:

Mexico City: Open, unencrypted networks accounted for 16.5% of local infrastructure.

Kaspersky warned that utilizing these exposed vectors invites a multi-tiered matrix of cyber threats, including traffic interception, unauthorized surveillance, Rogue Access Point deployments, and the targeted theft of sensitive login credentials.

The Persistence of Deprecated WPS Protocols The study unearthed a deeper structural vulnerability within the encrypted landscape: approximately 45% of networks superficially classified as secure—relying on WPA2 or WPA3 baselines—still maintain active Wi-Fi Protected Setup (WPS) protocols. This legacy feature contains well-documented architectural vulnerabilities heavily exploited by threat actors.

According to Kaspersky's data, active WPS deployments remained high, standing at 53.7% in Mexico City, 50.9% in Guadalajara, and 47.5% in Monterrey. Leaving this configuration active opens direct vectors for cyber assaults, including data interception, session hijacking, credential harvesting, and full device compromise.

Maria Isabel Manjarrez, Security Researcher at Kaspersky's GReAT team, observed that the initial reflex for most travelers upon disabling airplane mode is searching for an internet connection. She noted that public networks have become a vital utility for modern travel—fueling navigation maps, digital transit apps, electronic payment routing, and global communication. However, Manjarrez emphasized that while 83% of the networks appear secure on the surface, their underlying reliance on deprecated legacy features introduces systemic vulnerabilities, keeping public Wi-Fi a preferred target for hackers during high-density global events.