When I was in college, we learned about hacking WiFi but were told that with current encrypted WiFi networks and https, purely getting packet traffic would not be helpful.

Our campus shared space with a university, so my study group went over there and realized that their WiFi was unencryted. What was worst was their site to manage your courses and enrollment was also not using http.

We literally watched as a student logged in and could see his password and username (which happened to be his email).

From that, we could unenroll him for his course in a matter of seconds. The worst thing is with more digging we found he was using the same password for his Facebook.

It was scary as hell to realize it could literally be that easy to hack someone

This was 2008 so hopefully it has changed.