I have an unbranded Wi-Fi repeater from China. I was reading over the setup instructions and pretty much every sentence had a spelling mistake which has made me worry. The quality isn't so much a concern, but I'm wondering now is it possible for them to have installed some software that will act as a spy on the network and send back sensitive information to the source?
Does a Wi-Fi repeater have the ability to sniff the network data that it is boosting or is it nothing more than a signal booster? It seems as though this device will consume the current Wi-Fi connection and then output the same connection, sort of like a router in bridge mode, but connected wirelessly. Should I be worried that this device could rob my credit card data, or is it safe?
Well, all of the traffic is passing through it, so the answer is: yes. If you find yourself having to ask this question at all, don't even consider using the equipment.
If at all possible, stay far away from wifi repeaters. They degrade performance horribly and are the source of all sorts of problems. Just bite the bullet and pull cable so you can install a proper wired access point.
Yes the Wifi repeater can see all your traffic. If you are not using WPA encryption so can everyone else in range of the wifi signal.
No it can not see your banking details, because your browser(hopefully) set's up a encrypted SSL/TLS connection(tunnel) to the bank that is authenticated using the certificate provided by the banks server and verified by one or the CA's pre-loaded into your browser as being authentic.
The same is true for every bit of network equipment from your wifi through the internet up to your bank web-server, and behind your bank web-server to the database etc. they can all see your ip packets.
A "wifi repeater" must rewrite all traffic between the two networks, otherwise it couldn't possibly work. The repeater's clients are not clients of the existing access point, so the access point would not send traffic for them over its wifi link. Thus, at a minimum, a wifi repeater must rewrite the hardware addresses of its wireless (and wired, if supported) clients when they communicate with the other access point.