CATEGORIES
home News

Heads-Up: This Hotspot Finder App Has Leaked 2 Million Wi-Fi Network Passwords

by Brandon HillMonday, April 22, 2019, 03:27 PM EDT
Netgear Router
It’s becoming harder to know which apps to trust these days, and that’s readily apparent with the disclosure of a vulnerability in the popular Android app “Wi-Fi Finder.” The purpose of the app is to make it easier for individuals to locate free public Wi-Fi hotspots that they can use on-the-go rather than digging into their cellular data.

However, a password sharing feature of the app has been compromised according to security researcher Sanyam Jain. The feature allows users to upload Wi-Fi passwords stored on their devices so that they can be shared with others. However, this information – which should be separated from the public Wi-Fi hotpots that the app is primarily tasked with finding – had its database stored in plaintext and exposed to snoopers.

Two million passwords were discovered in the database, with tens of thousands of those belonging to networks in the United States. Not only were private SSID and password credentials readily accessible, but also the precise geolocation of the routers in question.

wifi finder

The app, which appears to hail from China, made no distinction between credentials for public Wi-Fi hotspots that users have already visited and wanted to share with others and their own private Wi-Fi networks (or those of friends and family).

According to TechCrunch, which first reported on the Wi-Fi Finder incident, Jain attempted for two weeks to contact the developer of the app, Proofusion. However, all attempts to warn them about the database breach failed, and Jain eventually had to turn the host that served the database, DigitalOcean, to have it removed.

With geolocation data of home networks, passwords and SSID information, it would be trivial for attackers to use this information to gain unauthorized access. They could then further course their way through a network compromising attached devices.

According to the Google Play listing for Wi-Fi Finder, it has a 4/5 rating (1,491 ratings) and has been downloaded by over 100,000+ users.

Tags:  Hotspot, Network, Database, wi-fi, wi-fi finder
TOP CONVERSATIONS
Your Next PC Platform?
More Results
KEEP INFORMED
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT Infrastructure

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

Privacy And Terms

HotTech

MORE

Accessibility

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

As an Amazon and Howl Technologies Associate, HotHardware earns a commission from qualifying purchases made on this site. This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of Hot Hardware, Inc. is prohibited. All content and graphical elements are Copyright © 1999 - 2024 David Altavilla and Hot Hardware, Inc.
All rights reserved. Privacy and Terms - Accessibility Commitment