Wardriving Assessment Reveals Widespread Unsecured Public Wi‑Fi in Mexico’s 2026 World Cup Venues
What Happened — Kaspersky’s GReAT team performed a passive wardriving survey of public Wi‑Fi hotspots in Mexico City, Monterrey and Guadalajara – the three host cities for the 2026 FIFA World Cup. The study identified thousands of SSIDs, many of which broadcast default router names, lack WPA2/3 encryption, or expose sensitive configuration data via WPS.
Why It Matters for TPRM —
- Unprotected public Wi‑Fi can be leveraged for credential harvesting, malware distribution, or man‑in‑the‑middle attacks against visiting executives and contractors.
- Third‑party vendors (stadium operators, airport authorities, hospitality providers) may be indirectly responsible for the security posture of the networks they expose to guests.
- Exposure risk spikes during large events when traffic surges, increasing the attack surface for supply‑chain and credential‑compromise threats.
Who Is Affected — Sports venue operators, airport authorities, municipal Wi‑Fi providers, hospitality chains, and any third‑party service providers that rely on or sponsor public wireless access in the three host cities.
Recommended Actions —
- Conduct a rapid audit of all public Wi‑Fi assets under your contract or oversight.
- Enforce WPA3 encryption, disable WPS, and change default SSIDs/passwords on all access points.
- Deploy network segmentation and captive‑portal monitoring to detect anomalous traffic during the tournament.
- Include Wi‑Fi security clauses in vendor contracts and require proof‑of‑compliance before the event kickoff.
Technical Notes — The assessment used passive sniffing to collect SSID, BSSID, channel, signal strength, and security flags. Over 60 % of observed networks lacked WPA2/3, 22 % advertised WPS, and 15 % used manufacturer‑default SSIDs that reveal device model and firmware version. No active exploitation was performed. Source: SecureList – Wardriving assessment across Mexico: Preparing for the 2026 World Cup