You are here: Home / Archives for location

Skype security flaw allows location tracking | TG Daily

October 25, 2011 By Leave a Comment

A glaring security flaw’s been uncovered in Skype and other VoIP systems, potentially allowing hackers to access users’ identities, locations and even files.

Skype claims more than a half-billion registered users, and one report suggests that one in five overseas calls is made using the service.

But researchers headed by a team at the Polytechnic Institute of New York University say that Skype can be used to track not only users’ locations over time but also their peer-to-peer file-sharing activity. It works even when a user’s blocked callers or used a Network Address Translation (NAT) firewall.

And having done this, says the team, it’s easy to link to information such as name, age, address, profession and employer using social media sites such as Facebook and LinkedIn in order to build profiles on a single tracked target or a database of hundreds of thousands.

“These findings have real security implications for the hundreds of millions of people around the world who use VoIP or P2P file-sharing services,” says Keith Ross of NYU-Poly.

“A hacker anywhere in the world could easily track the whereabouts and file-sharing habits of a Skype user – from private citizens to celebrities and politicians – and use the information for purposes of stalking, blackmail or fraud.”

via Skype security flaw allows location tracking | TG Daily.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Google lets Wi-Fi hotspot owners opt out of location service – Computerworld

September 15, 2011 By Leave a Comment

IDG News Service – Bowing to pressure from European privacy regulators, Google will soon allow owners of Wi-Fi access points to opt out of a Google service that allows smartphone owners to identify their location without using GPS (Global Positioning System), it said Tuesday.

On the same day, Google announced it will not appeal an order from the Dutch Data Protection Authority (CBP) requiring it to destroy records of 3.6 million Wi-Fi SSIDs (service set identifiers) it collected in breach of Dutch privacy laws, IDG’s Dutch news site Webwereld.nl reported.

By detecting the identity of a nearby Wi-Fi access point and looking up its geographic location in a database, Google can tell a smartphone owner roughly where they are. But so far, the owners of those Wi-Fi base stations haven’t had a say in how their location information is used.

Now Google plans to build an opt-out service so that access point owners can ask that their data not be used to determine the location of smartphones, it said Tuesday.

via Google lets Wi-Fi hotspot owners opt out of location service – Computerworld.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Microsoft Sued Over Phone Tracking – Security – Privacy – Informationweek

September 1, 2011 By Leave a Comment

Microsoft on Wednesday was sued in a district court in Seattle for allegedly tracking Windows Phone users without consent.

Plaintiff Rebecca Cousineau claims in the complaint that Microsoft is racing to develop a targeted location-based advertising system and has to map the locations of cell towers, wireless routers, mobile phones, and computers to do so effectively. The complaint alleges that Microsoft chose to collect this information from Windows Phone users rather than go through the expensive and laborious process of collecting the information itself.

“Microsoft’s scheme is executed through its camera application, which comes standard with a mobile device running the Windows Phone OS,” the complaint states.

The crux of the complaint is that Microsoft asks the user for permission to use his or her location the first time the camera application is opened and then ignores the user’s choice, collecting location data whether or not the user has consented.

via Microsoft Sued Over Phone Tracking – Security – Privacy – Informationweek.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Microsoft curbs Wi-Fi location database | Privacy Inc. – CNET News

August 1, 2011 By Leave a Comment

Microsoft has ceased publishing the estimated locations of millions of laptops, cell phones, and other devices with Wi-Fi connections around the world after a CNET article on Friday highlighted privacy concerns.

The decision to rework Live.com’s geolocation service comes following scrutiny of the way Microsoft made available its database assembled by both Windows Phone 7 phones and what the company calls “managed driving” by Street View-like vehicles that record Wi-Fi signals accessible from public roads. Every Wi-Fi device has a unique ID, sometimes called a MAC address, that cannot normally be changed.

Live.com’s database, which published the precise geographical locations of Wi-Fi devices, was working normally last Friday. By Saturday morning, Elie Bursztein, a postdoctoral researcher at the Stanford Security Laboratory who had analyzed the Live.com service, noticed that access had been restricted.

Stanford researcher Elie Bursztein had suggested that Microsoft should curb access to its database.

That follows a similar move by Google, which curbed access to its location database days after a June 15 CNET article appeared. Skyhook Wireless, which provides similar location services, already used a limited form of geolocation to protect privacy.

via Microsoft curbs Wi-Fi location database | Privacy Inc. – CNET News.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Street View cars grabbed locations of phones, PCs | Privacy Inc. – CNET News

July 25, 2011 By Leave a Comment

Google’s Street View cars collected the locations of millions of laptops, cell phones, and other Wi-Fi devices around the world, a practice that raises novel privacy concerns, CNET has confirmed.

The cars were supposed to collect the locations of Wi-Fi access points. But Google also recorded the street addresses and unique identifiers of computers and other devices using those wireless networks and then made the data publicly available through Google.com until a few weeks ago.

The French data protection authority, known as the Commission Nationale de l’Informatique et des Libertés (CNIL) recently contacted CNET and said its investigation confirmed that Street View cars collected these unique hardware IDs. In March, CNIL’s probe resulted in a fine of 100,000 Euros, about $143,000.

The confirmation comes as concerns about location privacy appear to be growing. Apple came under fire in April for recording logs of approximate location data on iPhones, and eventually released a fix. That controversy sparked a series of disclosures about other companies’ location privacy practices, questions and complaints from congressmen, a pair of U.S. Senate hearings, and the now-inevitable lawsuits seeking class action status.

A previous CNET article, published June 15 and triggered by the research of security consultant Ashkan Soltani, was the first to report that Google made these unique hardware IDs–called MAC addresses–publicly available through a Web interface. Google curbed the practice about a week later.

via Street View cars grabbed locations of phones, PCs | Privacy Inc. – CNET News.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Nissan car secretly shares driver data with websites • The Register

June 14, 2011 By Leave a Comment

Electric cars manufactured by Nissan surreptitiously leak detailed information about a driver’s location, speed and destination to websites accessed through the vehicle’s built in RSS reader, a security blogger has found.

The Nissan Leaf is a 100-percent electric car that Nissan introduced seven months ago. Among its many innovations is a GSM cellular connection that lets drivers share a variety of real-time data about the car, including its location, driving history, power consumption, and battery reserves. Carwings, as the service is known, then provides a number of services designed to support “eco-driving,” such as break downs of the vehicle’s energy efficiency based on comparisons with other owners.

But according to Seattle-based blogger Casey Halverson, Carwings includes the detailed data in all web requests the Nissan Leaf sends to third-party servers that the driver has subscribed to through RSS, or real simple syndication. Each time the driver accesses a given RSS feed, the car’s precise geographic coordinates, speed, and direction are sent in clear text. The data will also include the driver’s destination if it’s programmed in to the Leaf’s navigation system, as well as data available from the car’s climate control settings.

via Nissan car secretly shares driver data with websites • The Register.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Location-based service business could hit $10 billion by 2016, report says – latimes.com

June 12, 2011 By Leave a Comment

Location-based services could become a $10-billion-per-year business by 2016, despite recent concerns over privacy and what companies do with location data once they’ve gotten it, according to a new research firm report.

“The recent kerfuffle over Apple iPhone tracking and other privacy concerns will barely be a speed bump in the evolution of location-based services (LBS) because there is simply too much money at stake,” said the research firm Strategy Analytics in their new study called “The $10 Billion Rule: Location, Location, Location.”

“Consumers are increasingly demanding services such as search, maps or navigation, for which location information is either fundamental to or provides greater context, utility and therefore appeal,” the firm said. “For advertisers, location data provides opportunities for ad targeting and optimization.”

In Strategy Analytics estimations, location-based search advertising could account for “just over 50%” of the predicted range of $10 billion in 2016.

Location providers will have to become more transparent with users about how location data is captured, managed and stored, but that won’t stop the growth of location-based services for mobile phone and tablet users, the firm said.

“For advertisers, location data provides opportunities for targeting and optimizing ads,” said Nitesh Patel, a senior analyst at the company. “Strategy Analytics sees strong evidence of consumer demand for LBS in line with rising smartphone and data plan penetration.”

via Location-based service business could hit $10 billion by 2016, report says – latimes.com.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Panel to Propose Tighter Data Protection in Europe – NYTimes.com

May 16, 2011 By Leave a Comment

The European Commission’s advisory panel on data protection plans this week to urge governments in the European Union to treat the geographic location of cellphone users as personal data, deserving of the highest level of privacy protection.

The panel, which consists of 27 national regulators, plans to adopt the opinion on Friday, according a European Union official who declined to be named because he was not authorized to speak for the panel.

The panel, whose opinions are not binding, is adopting the statement in a so-called written procedure without holding a formal meeting. The current chairman of the group is the Dutch data protection chief, Jacob Kohnstamm.

The statement is unlikely to have an immediate influence on the collection of cellphone location data by smartphone makers like Apple, which is being investigated by several European countries for its practices.

Technology companies in the past have ignored the panel’s recommendations, including those regarding the length of time that search engines can retain data about users’ computers.

The debate surrounding the geographic location of cellphone users intensified in April when researchers in the United States disclosed that Apple, the maker of the iPhone, appeared to be collecting information on its phones. Apple, in a statement, attributed the data collection to a software glitch and said it did not track users’ locations.

Google, the maker of the Android smartphone operating system, said that it collects geographic data for a limited time, but renders it anonymous before sending it to its servers for processing. Android users also must give consent before Google can track their locations.

In the wake of the disclosure by Apple, five European Union countries — Germany, France, Britain, Ireland and Italy — said they would investigate whether Apple had broken national laws.

via Panel to Propose Tighter Data Protection in Europe – NYTimes.com.

Filed Under: From The News Tagged With: , , , , , , , , ,

Google E-Mails Show Value of Location Data – Mobiledia

May 4, 2011 By Leave a Comment

Internal Google e-mails shed light on the importance of location data for the company, underscoring the stakes in the recent privacy controversy over mobile positioning privacy.

The e-mails, unearthed as part of a ongoing lawsuit between the Mountain View, Calif.-based company and Skyhook over location data services, underline the company’s need for location data as a part of its mobile plans.

“I cannot stress enough how important Google’s wifi location database is to our Android and mobile product strategy,” wrote Steve Lee, Google’s location service product manager, to then-CEO Larry Page. “We need wifi data collection in order to maintain and improve our wifi location service.”

Location data possibly serves an important function for Google, helping the company get a fix on geolocation to deliver location-based mobile ads. But getting that kind of fast, accurate information can be difficult, and Wi-Fi positioning is often the only way to get the information that Google needs.

Getting a GPS fix on locations can take minutes, and may be impossible when indoors or in a big cities. By comparing nearby Wi-Fi networks to a database of networks with known positions, however, a phone can calculate location to within 100 feet.

But building a good database of networks is tricky because they must be constantly updated, since people change Wi-Fi routers and new networks appear all the time.

via Google E-Mails Show Value of Location Data – Mobiledia.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Verizon To Put Warning Stickers On All Smartphones With Location Awareness | Touch Reviews

May 1, 2011 By Leave a Comment

As part of the fallout of the current iPhone 4 location data fiasco it appears Verizon will now put warning stickers on its location-aware smartphones, reports Electronista.

In a letter in response to Massachusetts Congressman Ed Markey’s call for information on the affair, Verizon SVP of Federal Government Relations Peter B. Davidson explains that Verizon will continue to try to educate its customers and to try to protect them from any potential pitfalls of smartphone ownership when it comes to their location.

In order to warn its customers, Verizon will soon begin attaching stickers to smartphone screens, warning that the handset has the ability to detect its (and thus the owner’s) location and transmit it to a receiving party. Whether this information will ever be read, let alone headed remains to be seen but Verizon is at least taking steps to protect its customers, as well as itself!

via Verizon To Put Warning Stickers On All Smartphones With Location Awareness | Touch Reviews.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,
« Older Posts