My application sends data to the Ubidots dashboard using unencrypted TCP. In the API documentation, the following is stated:
We strongly advise to use TCP with TLS to make sure your data travels encrypted, avoiding the exposure of your API token and/or sensor data to third parties."
Can you please explain to me how an unencrypted message could be intercepted? As far as I understand, both cellular and WIFI (With password) signals are already encrypted, so wouldn’t further encryption be redundant? Where and how would it be possible to intercept the message that justifies further encryption?