Device manufacturers need to pay more attention to security. Before the current digital wave, where people store assets on mobile devices and PC, phones were not primarily used to store important information, and much attention was not placed on security, passwords and unauthorized access.
Good post, I would look up WPS, and how it works.
Well this is more about wifi than smartphones, and you can have wifi without any smartphones around.
When WPA came around they were tightening security, but then they tried to cave for the people who is "too lazy to remember a password", perhaps the typical engineer vs marketing/boss situation.
WPS is a serious security flaw and should never be used under any circumstance, same as WEP.