For many in the financial sector, business travel has become an unavoidable part of the job. Whether it’s roadshows, investor meetings, or attending conferences across multiple time zones. But while we’ve adjusted our workflows to make remote work more flexible, our cybersecurity habits haven’t always caught up.
In 2025, business travellers are increasingly becoming high-value targets. Devices carried through airports, cafés and hotels contain sensitive client data, login credentials, and access to internal systems. And attackers know that mobile professionals are more likely to connect to unsecured networks, rely on public charging stations, or let their guard down outside the structure of the office.
At Portfolio BI, we’ve seen first-hand how even cautious professionals can fall victim to simple oversights. Here are the most common and avoidable risks you should be aware of when working on the move.
.
1. Public Wi-Fi is Still the Weakest Link
The Wi-Fi at your hotel or the airport lounge may seem convenient, but it often lacks the encryption needed to protect your data. Man-in-the-middle attacks, DNS spoofing, and fake hotspots can all be used to intercept communications or harvest credentials.
Quick fix: Use your mobile hotspot or a tethered connection via your phone whenever possible. If you must connect to public Wi-Fi, make sure your VPN is active before opening any work-related apps or emails.
.
2. Juice Jacking: The Modern Pickpocketing
Plugging your phone or laptop into a public USB charging station might save your battery, but it could cost you your data. Some ports may be altered to install malware or extract information without your knowledge.
Quick fix: Carry a power bank or a USB data blocker that allows charging without data transfer.
.
3. Lost Devices, Delayed Disclosure
A laptop left in a taxi or a phone forgotten in a hotel, it happens. But what happens next is critical. If there’s no encryption, strong password protection, or remote wipe capability, a lost device becomes a breach risk.
Quick fix: Encrypt your devices, enable remote lock and wipe, and report losses to your IT team immediately.
.
4. The Rise of Quishing (QR Code Phishing)
Travellers are regularly scanning QR codes. Examples include to order food, board planes and access hotel menus. But malicious codes can redirect you to phishing sites or install malware.
Quick fix: Avoid scanning QR codes in public spaces unless you know the source. Look for physical signs of tampering (e.g., stickers placed over legitimate codes).
.
Cybersecurity isn’t about paranoia. It’s about preparation. Most attacks rely not on advanced hacking techniques, but on human error and convenience. By making a few small adjustments to how you travel and work, you can significantly reduce your exposure.
To make this easy, we’ve created a simple Secure Business Travel Checklist you can use before your next trip.
[Download the checklist below and share it with your team.]
.
For more tailored cybersecurity guidance, feel free to get in touch with the team at Portfolio BI.
