The RBI Is Warning Every Indian About Public Wi-Fi
The Reserve Bank of India recently ran an ad on Facebook. Not promoting a scheme, not announcing a policy change. A digital safety awareness campaign - warning everyday Indians not to use public Wi-Fi for financial transactions.
Think about that for a second. The institution that regulates every bank, every UPI app, every payment system in this country felt strongly enough about this to spend money on social media awareness. Not a press conference. Not a circular sent to banks. A Facebook ad, aimed directly at the public.
They don't do that unless the numbers are bad. And right now, with more Indians traveling internationally than ever before - for work, for holidays, for everything in between - the numbers are bad.
Here's what the RBI wants you to know before your next trip.
The RBI Made This Official. Here's the Exact Advisory.
In an official press release (2019-2020/2534), the Reserve Bank of India told the public, plainly, to avoid undertaking banking or other financial transactions through public, open or free wifi-networks.
Not hidden in a 40-page circular. A press release. And then a Facebook ad. The RBI - the institution that regulates every bank, every UPI app, every payment system in this country - spent money on social media to say this out loud during a World Cup.
When India's central bank does that, something in the fraud data is alarming them.
That "Free Wi-Fi" at the Airport Isn't as Safe as It Looks
You're at the airport. Flight's in two hours. You connect to the free Wi-Fi to quickly check your bank balance or send a transfer before you board. The network is called something official-sounding - "IndiGo Lounge WiFi" or "Terminal 2 Guest Network." Looks fine. Connects instantly.
What you don't know is whether that network is actually the airport's - or whether someone in the terminal set it up five minutes ago to intercept connections like yours.
This is called a man-in-the-middle attack. Someone creates a hotspot with a believable name, sits back, and reads the data flowing through it. Your login. Your OTP. Your account details. You see a normal-looking webpage. They see everything behind it.
And even on the genuine airport Wi-Fi - not the fake one - you're on a shared network with thousands of strangers. The encryption is weak. The security is built for convenience, not protection.
India's CERT-In, the government's own cybersecurity body, put it plainly under their Jaagrookta Diwas initiative: public Wi-Fi at airports, coffee shops, and public spaces often lacks proper security, and cybercriminals can intercept unsecured connections to access personal and financial information.
Two independent government bodies. Same warning.
Your Banking App Is Just the Start of It
Most people hear "don't do banking on public Wi-Fi" and think - okay, I won't open HDFC. But the exposure is wider than that.
Your UPI. Your forex card app. Your email - which is full of OTPs and booking confirmations. Your travel insurance portal. Any app where money sits, moves, or can be authorised is exposed on an unsecured network. You don't have to be actively transacting for something to go wrong. Logging in is enough.
When you're traveling internationally, you're doing more of this than usual - checking card balances, making hotel payments, loading currency, sending money home. All while jet-lagged, in an unfamiliar place, instinctively connecting to whatever Wi-Fi is available because roaming feels too expensive to touch.
More financial activity. Less secure internet. Somewhere you're distracted. Fraudsters know exactly where to set up.
Three Things to Do Before Your Next Flight
Switch to mobile data for anything financial. Your 4G or 5G connection runs through your telecom provider's encrypted network - not shared with the strangers in the lounge. Nobody nearby can intercept it. For banking, UPI, card apps - your own data, always.
Also turn off auto-connect. Most phones save networks and reconnect silently. When traveling, disable this. Don't let your phone make that decision without you.
If you genuinely have no choice and must go on public Wi-Fi, a VPN encrypts your traffic before it leaves your device. Not perfect, but far safer than connecting raw. A simple rule to remember: don't do on public Wi-Fi anything you wouldn't do on a shared computer at a cybercafé.
The Advice Is Right. The Problem Is Roaming Rates Make It Hard to Follow.
Using mobile data abroad is the right call. The problem is Indian roaming rates are steep enough that most people actively avoid international data - which is exactly what drives them toward the free airport Wi-Fi the RBI is warning about.
Roaming is expensive → avoid using data → connect to public Wi-Fi → expose yourself to exactly what the RBI warned about.
A travel eSIM breaks that cycle. No physical card to swap, no visiting a store abroad, no juggling two phones. You add a local data plan directly to your phone before you leave India, your Indian number and WhatsApp stay active, and you land with a private mobile connection already running - not a shared hotspot in a departure terminal.
Matrix has been connecting Indians traveling abroad since 1995, long before eSIMs existed. A Matrix eSIM is what makes the RBI's advice actually followable - because if the safe option isn't also the affordable one, nobody switches.
Don't let the free airport Wi-Fi be the thing that costs you more than your flight ticket.
