Slashdot Mirror
US Telcos Are Selling Access To Their Customers' Location Data, and That Data Reaches Bounty Hunters and Others Not Authorized To Possess It (vice.com)
T-Mobile, Sprint, and AT&T are selling access to their customers' location data, and that data is ending up in the hands of bounty hunters and others not authorized to possess it, letting them track most phones in the country, an investigation by news outlet Motherboard has found. From the report: Nervously, I gave a bounty hunter a phone number. He had offered to geolocate a phone for me, using a shady, overlooked service intended not for the cops, but for private individuals and businesses. Armed with just the number and a few hundred dollars, he said he could find the current location of most phones in the United States. The bounty hunter sent the number to his own contact, who would track the phone. The contact responded with a screenshot of Google Maps, containing a blue circle indicating the phone's current location, approximate to a few hundred metres. [...] The bounty hunter did this all without deploying a hacking tool or having any previous knowledge of the phone's whereabouts. Instead, the tracking tool relies on real-time location data sold to bounty hunters that ultimately originated from the telcos themselves, including T-Mobile, AT&T, and Sprint, a Motherboard investigation has found. These surveillance capabilities are sometimes sold through word-of-mouth networks.
[...] Motherboard's investigation shows just how exposed mobile networks and the data they generate are, leaving them open to surveillance by ordinary citizens, stalkers, and criminals, and comes as media and policy makers are paying more attention than ever to how location and other sensitive data is collected and sold. The investigation also shows that a wide variety of companies can access cell phone location data, and that the information trickles down from cell phone providers to a wide array of smaller players, who don't necessarily have the correct safeguards in place to protect that data. "Blade Runner, the iconic sci-fi movie, is set in 2019. And here we are: there's an unregulated black market where bounty-hunters can buy information about where we are, in real time, over time, and come after us. You don't need to be a replicant to be scared of the consequences," Thomas Rid, professor of strategic studies at Johns Hopkins University, told Motherboard.
Ron Wyden, a senator from Oregon, said in a statement, "This is a nightmare for national security and the personal safety of anyone with a phone."
[...] Motherboard's investigation shows just how exposed mobile networks and the data they generate are, leaving them open to surveillance by ordinary citizens, stalkers, and criminals, and comes as media and policy makers are paying more attention than ever to how location and other sensitive data is collected and sold. The investigation also shows that a wide variety of companies can access cell phone location data, and that the information trickles down from cell phone providers to a wide array of smaller players, who don't necessarily have the correct safeguards in place to protect that data. "Blade Runner, the iconic sci-fi movie, is set in 2019. And here we are: there's an unregulated black market where bounty-hunters can buy information about where we are, in real time, over time, and come after us. You don't need to be a replicant to be scared of the consequences," Thomas Rid, professor of strategic studies at Johns Hopkins University, told Motherboard.
Ron Wyden, a senator from Oregon, said in a statement, "This is a nightmare for national security and the personal safety of anyone with a phone."
Aldous Huxley, George Orwell and even Ray Bradbury predicted the world that we are steaming in to. Even Max Headroom is to some extent surpassed.
If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
As long as you can find out in which mobile network that phone is registered, you can take a SIM from the same provider, pop-it into a mobile modem, enable basic network tracing and call that number. As soon as the called number begins to ring, you'll get a packet back from the network listing among other stuff the CELLID where that phone is registered.
And there are a bunch of websites where you can plug a CELLID which will show that "hunder meter circle" where that cell's antenna has coverage.
1% APY, No fees, Online Bank https://captl1.co/2uIErYq Don't let your $$$ sit in a no-interest acct.
It's part of the TOS you sign with your carrier.
If a couple of criminals get burned by their phones' location, I'm not going to cry any rivers.
Until you become a criminal by violating some unfair or unconstitutional law and they track you down....
The problem here is that it's illegal to track down a criminal using this data without a warrant. That folks can do this and bypass the need for a warrant may not be a problem to you now, but the camel's nose is in the tent if we let this happen w/o complaint and you may wish you'd said something.
"File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
Warning to telecoms: if you don't like being regulated, don't invent reasons to get regulated.
Get together and come up with a mutual industry agreement on when and how to share customer data in a way that's not confusing or misleading to customers. Sign the agreement and hold each other accountable. The alternative is that the gov't will do such for you after you play fast and loose for short-term profits and bungle it one day.
Table-ized A.I.