Tracking Firm LocationSmart Leaked Location Data for Customers of All
Major U.S. Mobile Carriers Without Consent in Real Time Via Its Web

        LocationSmart, a U.S. based company that acts as an aggregator
        of real-time data about the precise location of mobile phone
        devices, has been leaking this information to anyone via a
        buggy component of its Web site -- without the need for any
        password or other form of authentication or authorization --
        KrebsOnSecurity has learned. The company took the vulnerable
        service offline early this afternoon after being contacted by
        KrebsOnSecurity, which verified that it could be used to
        reveal the location of any AT&T, Sprint, T-Mobile or Verizon
        phone in the United States to an accuracy of within a few
        hundred yards.

 - - - 

Lauren Weinstein ( 
Lauren's Blog:
Google Issues Mailing List:
Founder: Network Neutrality Squad: 
         PRIVACY Forum:
Co-Founder: People For Internet Responsibility:
Member: ACM Committee on Computers and Public Policy
Tel: +1 (818) 225-2800
nnsquad mailing list

Reply via email to