Security News

Google fined $60 million over Android location data collection
2022-08-13 15:08

The Australian Competition and Consumer Commission announced that Google was fined $60 million for misleading Australian Android users regarding the collection and use of their location data for almost two years, between January 2017 and December 2018. "Google, one of the world's largest companies, was able to keep the location data collected through the 'Web & App Activity' setting and that retained data could be used by Google to target ads to some consumers, even if those consumers had the"Location History" setting turned off," said ACCC Chair Gina Cass-Gottlieb.

The weaponizing of smartphone location data on the battlefield
2022-07-13 04:00

How each side collects the adversary's smartphone location data and shields their own can mean the difference between victory and defeat. Because mobile app location data is often sold to commercial data brokers and then repackaged and sold to individual customers, a country can access such a database and then pick out the phones likely belonging to soldiers.

Abortion rights: US senators seek ban on sale of health location data
2022-06-17 20:29

A group of senators wants to make it illegal for data brokers to sell sensitive location and health information of individuals' medical treatment. "When abortion is illegal, researching reproductive health care online, updating a period-tracking app, or bringing a phone to the doctor's office all could be used to track and prosecute women across the US," Sen. Ron Wyden, a co-sponsor of the Health and Location Data Protection Act, said in a statement.

Boffins propose Pretty Good Phone Privacy to end pretty invasive location data harvesting by telcos
2021-08-11 00:06

"We solve something that had previously been thought impossible - achieving location privacy in mobile networks," said Paul Schmitt, an associate research scholar at the Center for Information Technology Policy at Princeton University, told The Register. In "Pretty Good Phone Privacy," [PDF] a paper scheduled to be presented on Thursday at the Usenix Security Symposium, Schmitt and Barath Raghavan, assistant professor of computer science at the University of Southern California, describe a way to re-engineer the mobile network software stack so that it doesn't betray the location of mobile network customers.

Commercial Location Data Used to Out Priest
2021-07-23 13:58

A Catholic priest was outed through commercially available surveillance data. The news starkly demonstrates not only the inherent power of location data, but how the chance to wield that power has trickled down from corporations and intelligence agencies to essentially any sort of disgruntled, unscrupulous, or dangerous individual.

Google Broke Australian Law Over Location Data Collection: Court
2021-04-16 08:28

Google violated Australian law by misleading users of Android mobile devices about the use of their location data, a court ruled Friday in a landmark decision against the global digital giant. The federal court found that in 2017 and 2018 Google misled some users of phones and tablets featuring its Android operating system by collecting their personally identifiable location information even when they had opted out of sharing "Location History" data.

The US Military Buys Commercial Location Data
2020-11-19 15:37

Vice has a long article about how the US military buys commercial location data worldwide. The U.S. military is buying the granular movement data of people around the world, harvested from innocuous-seeming apps, Motherboard has learned.

Spain's highway agency is monitoring speeding hotspots using bulk phone location data
2020-09-25 17:21

Spain's highways agency is using bulk mobile phone data for monitoring speeding hotspots, according to local reports. Equipped with data on customers handed over by local mobile phone operators, Spain's Directorate-General for Traffic may be gathering data on "Which roads and at what specific kilometer points the speed limits are usually exceeded," according to Granadan newspaper Ideal.

Unsecured Microsoft Bing Server Leaks Search Queries, Location Data
2020-09-21 20:07

An unsecured database has exposed sensitive data for users of Microsoft's Bing search engine mobile application - including their location coordinates, search terms in clear text and more. While no personal information, like names, were exposed, researchers with Wizcase argued that enough data was available that it would be possible to link these search queries and locations to user identities - giving bad actors information ripe for blackmail attacks, phishing scams and more.

Collecting and Selling Mobile Phone Location Data
2020-08-11 11:00

The Wall Street Journal has an article about a company called Anomaly Six LLC that has an SDK that's used by "More than 500 mobile applications." Through that SDK, the company collects location data from users, which it then sells. Anomaly Six is a federal contractor that provides global-location-data products to branches of the U.S. government and private-sector clients.