http://www.androidpolice.com/2012/02/01/public-disclosure-vulnerability-in-htc-android-devices-exposed-wi-fi-credentials-to-apps-which-knew-how-to-ask-but-thankfully-didnt/ from the article: A serious vulnerability that affected the way some popular HTC Android phones handle 802.1x usernames...