I keep hearing on VPN ads that you have to use a VPN to not have your login information stolen. So far I have been using Cloudflare WARP to be safe enough. However, if I am using an HTTPS website, do I really need a VPN or WARP? Will an attacker on the same network as me be able to access passwords transmitted over HTTPS?
It’s not necessary as far ik, is just more recommended. Because it would make your connection more secure if the software on your device use http or peer-to-peer connections, it would also hide your internet traffic, but is nothing necessary you need to do.