It sounds to me like they are developing some tools to help map things inside the store. So they can give you directions to things you are looking for maybe. Also with this information they could do something similar to those Amazon stores where you just pick things up and walk out and it charges you automatically.
Not saying you all want to share the info with them. It is invasive. But as an engineer I can see so many cool features I could build with this information.
Never trust an open network. Even if the company providing isn’t doing anything shady, the easy at which MITM (man in the middle) attacked, can be performed means that many insecure (and some secure) networks can be spoofed with a small amount of know-how.
Always make sure your connecting to a safe, secure wifi network, in a place where you expect that network to exist at.
If your phone connects in a place you wouldn’t expect it to connect, double check what it’s connecting to, and if necessary, disable your wifi.
That mechanism only happens after you connect to it, you have to connect to the wifi in order to download the certificate to connect. And it doesn’t apply to all open WI-FI. A someone can still spoof the wifi. The fun part is when they set up their own false “I agree to the usage” pop up page that just steals your data - standardised systems like this are easily spoofed, especially when it comes to open and insecure wifi. They could even send you a bogus certificate that routes all the traffic through their gateway, allowing them to spy on the secure connections.
It’s a good thing I don’t have any socials for them to trace me back to. And since I work there, I’m always looking at shit that will prolly throw them off.
Yeah, you can pretty much assume that any random Wi-Fi asking for that information is already doing that. My local mall has one that will accept any old email but it certainly looks like this one wants you to create an actual Walmart account.
Sometimes these login portals accept any old bogus email or burner account. They were logging your IP anyway so realistically doesnt add any more compromised dafa
I’m gonna assume that by IP you mean MAC address because your IP is something that gets negotiated with the AP when you connect, changes every time you connect and can’t really be linked back to your device at a public AP. In that case, the right move is to enable MAC randomization and connect through a VPN if you need to hide who you’re talking to or just rely on TLS if you don’t care that they know who you’re talking to and only need to hide what was said.
Not sure about this Walmart case but most you can write any email like random letters a@gmail.com or not even the Gmail part as long as it’s a valid looking mail and then works like you don’t even have to confirm the email or anything.
If he was lucky or early enough to get a single name email then I’m sure they can handle some spam emails or get an email full of numbers like the rest of us