Insecure Logging
The class
com.insecureshop.LoginActivity contains the following code:android.util.Log.d("userName", username);
android.util.Log.d("password", password);
This implies the user credentials are logged within the Logcat when the user logs into the account.
Last modified 1yr ago