iot device transmits plaintext wifi password & essid
#1
So I found out that my "smart" lights actually transmit the set wifi password & essid,
when the said access point is out of range(off).
Looking at the hcxpcapngtool outputs, I immediately spotted the old access point details.


How common is that? Do you guys stumble on this a lot?
I believe these lights have Esspresif 8266 Wi-Fi chips. Are they all vulnerable?

Did Hcxdumptool did something impressive? And how do I find out?
I'm quite new to this, does it make sense to have a look in the capture file and look if it's there in plaintext?
(that would be with Wireshark I think?)

Sorry for all the questions, google seems especially not helpful when it is about wifi security.
When I type in anything in combination with Iot devices, I only get the standard run-of-the-mill news articles
Reply


Messages In This Thread
iot device transmits plaintext wifi password & essid - by Kwiss - 07-30-2022, 05:14 PM