Tracking Firm LocationSmart Leaked Location Data for Customers of All
Major U.S. Mobile Carriers Without Consent in Real Time Via Its Web
Site

https://krebsonsecurity.com/2018/05/tracking-firm-locationsmart-leaked-location-data-for-customers-of-all-major-u-s-mobile-carriers-in-real-time-via-its-web-site/

        LocationSmart, a U.S. based company that acts as an aggregator
        of real-time data about the precise location of mobile phone
        devices, has been leaking this information to anyone via a
        buggy component of its Web site -- without the need for any
        password or other form of authentication or authorization --
        KrebsOnSecurity has learned. The company took the vulnerable
        service offline early this afternoon after being contacted by
        KrebsOnSecurity, which verified that it could be used to
        reveal the location of any AT&T, Sprint, T-Mobile or Verizon
        phone in the United States to an accuracy of within a few
        hundred yards.

 - - - 

--Lauren--
Lauren Weinstein (lau...@vortex.com): https://www.vortex.com/lauren 
Lauren's Blog: https://lauren.vortex.com
Google Issues Mailing List: https://vortex.com/google-issues
Founder: Network Neutrality Squad: https://www.nnsquad.org 
         PRIVACY Forum: https://www.vortex.com/privacy-info
Co-Founder: People For Internet Responsibility: https://www.pfir.org/pfir-info
Member: ACM Committee on Computers and Public Policy
Google+: https://google.com/+LaurenWeinstein
Twitter: https://twitter.com/laurenweinstein
Tel: +1 (818) 225-2800
_______________________________________________
nnsquad mailing list
https://lists.nnsquad.org/mailman/listinfo/nnsquad

Reply via email to