An Android hotspot APP actually sold more than 2 million WiFi passwords?

Recently, it was learned that an Android hotspot search app called "WiFi Finder" exposed the Wi-Fi passwords of more than 2 million networks. So far, thousands of people have downloaded WiFi Finder. It is reported that the app allows users to search for nearby Wi-Fi networks while also allowing users to upload Wi-Fi passwords from their devices to a database for others to use. It sounds a bit like the WiFi hacking key that was just exposed not long ago.

[[263492]]

It is understood that the database of more than 2 million Wi-Fi passwords contained here is not protected by any security and anyone can access and download the data in batches. As for this security bug, it was first discovered by network security researcher Sanyam Jain, who reported his findings to TechCrunch.

Afterwards, TechCrunch tried to contact the developer of the app, but to no avail. Finally, TechCrunch contacted the database hosting provider DigitalOcean, which shut down the database within a day.

In fact, every record in the database contains the name of the Wi-Fi network, the precise geographic location, the basic service set identifier (BSSID), and the network password stored in plain text. In fact, for security reasons, we have always advised you not to use apps like ***Wi-Fi Key, because when you obtain a strange wireless password, it is likely that your own password will also be made public. In public places, we recommend that you use your own 4G network.