US Telcos Are Selling Access To Their Customers' Location Data, and That Data Reaches Bounty Hunters and Others Not Authorized To Possess It

T-Mobile, Sprint, and AT&T are selling access to their customers' location data, and that data is ending up in the hands of bounty hunters and others not authorized to possess it, letting them track most phones in the country, an investigation by news outlet Motherboard has found. From the report: Nervously, I gave a bounty hunter a phone number. He had offered to geolocate a phone for me, using a shady, overlooked service intended not for the cops, but for private individuals and businesses. Armed with just the number and a few hundred dollars, he said he could find the current location of most phones in the United States. The bounty hunter sent the number to his own contact, who would track the phone. The contact responded with a screenshot of Google Maps, containing a blue circle indicating the phone's current location, approximate to a few hundred metres. [...] The bounty hunter did this all without deploying a hacking tool or having any previous knowledge of the phone's whereabouts. Instead, the tracking tool relies on real-time location data sold to bounty hunters that ultimately originated from the telcos themselves, including T-Mobile, AT&T, and Sprint, a Motherboard investigation has found. These surveillance capabilities are sometimes sold through word-of-mouth networks.

[...] Motherboard's investigation shows just how exposed mobile networks and the data they generate are, leaving them open to surveillance by ordinary citizens, stalkers, and criminals, and comes as media and policy makers are paying more attention than ever to how location and other sensitive data is collected and sold. The investigation also shows that a wide variety of companies can access cell phone location data, and that the information trickles down from cell phone providers to a wide array of smaller players, who don't necessarily have the correct safeguards in place to protect that data. "Blade Runner, the iconic sci-fi movie, is set in 2019. And here we are: there's an unregulated black market where bounty-hunters can buy information about where we are, in real time, over time, and come after us. You don't need to be a replicant to be scared of the consequences," Thomas Rid, professor of strategic studies at Johns Hopkins University, told Motherboard.

Ron Wyden, a senator from Oregon, said in a statement, "This is a nightmare for national security and the personal safety of anyone with a phone."

I'm not surprised.

[Z00L00K]

Aldous Huxley, George Orwell and even Ray Bradbury predicted the world that we are steaming in to. Even Max Headroom is to some extent surpassed.

Re:I'm not surprised.

[pdclarry]

Bullshit.

You are not that important. Unless you are a criminal, on the run from the police, there are no bounty hunters looking for you.

Bounty hunters aren't the only potential users of this "service." How about abusive spouses? Stalkers? terrorists?

Re: I'm not surprised.

Political Rivals, or anyone ever thinking of running for office or holding a public office or with a modicum of influence or power (journalists included).

Just think of the dirt that can be used for influence if money doesnt talk.

Re:I'm not surprised.

[farble1670]

Sidenote: I installed Life360, an Android location and overall helpful app for my (now-ex) girlfriend so we could easily locate each other. I talked to her beforehand

Needing to know each others' location at any time is at least one of the contributing problems.

Re:I'm not surprised.

[ShanghaiBill]

They think it means a professional kidnapper, like Boba Fett.

Bullcrap. Boba Fett was working within the legal jurisdiction of the Empire. He was just as legitimate as any other bounty hunter.

Can be done even cheaper.

[psergiu]

As long as you can find out in which mobile network that phone is registered, you can take a SIM from the same provider, pop-it into a mobile modem, enable basic network tracing and call that number. As soon as the called number begins to ring, you'll get a packet back from the network listing among other stuff the CELLID where that phone is registered.
And there are a bunch of websites where you can plug a CELLID which will show that "hunder meter circle" where that cell's antenna has coverage.

Re:Not seeing an issue here

[bobbied]

It's part of the TOS you sign with your carrier.

If a couple of criminals get burned by their phones' location, I'm not going to cry any rivers.

Until you become a criminal by violating some unfair or unconstitutional law and they track you down....

The problem here is that it's illegal to track down a criminal using this data without a warrant. That folks can do this and bypass the need for a warrant may not be a problem to you now, but the camel's nose is in the tent if we let this happen w/o complaint and you may wish you'd said something.

Testing their boundaries

[Tablizer]

Warning to telecoms: if you don't like being regulated, don't invent reasons to get regulated.

Get together and come up with a mutual industry agreement on when and how to share customer data in a way that's not confusing or misleading to customers. Sign the agreement and hold each other accountable. The alternative is that the gov't will do such for you after you play fast and loose for short-term profits and bungle it one day.

Re:How it's done

[bobbied]

I believe you are mostly correct about the HLR/VLR, but I think the cell company has more information than just what tower you are hitting or which MSC you happen to be in. (BTW, it's really the MSC's VLR that has this information, the HLR is where your handset is registered and it knows what MSC you are in so inbound calls can be routed to the right MSC to be delivered to your handset. The local MSC to your handset has a VLR (Visitor Location Register) which is about where your handset happens to be right now so when that call arrives they know what cell gets the call so they can assign a slot and deliver it to your phone.

These days they have quite a bit more information about the handset's location, including a signal strength and apparent direction from the cell tower, from which they can make a pretty good estimate of your location. They need this information to more accurately transmit and receive from your handset at the higher data rates while not consuming excessive expensive spectrum space. These days cell towers have electronically steerable arrays for antennas, so they can better use their available spectrum space to service more phones at higher data rates.