Яндекс.Метрика Service leaked locations of US cell phones for free, no password required ⋆ Technologies of the future for life!
Home / Gadgets / Service leaked locations of US cell phones for free, no password required

Service leaked locations of US cell phones for free, no password required

Enlarge / An image from the LookSmart website. (credit: LocationSmart)

A little-known service has been leaking the real-time locations of US cell phone users to anyone who takes the time to exploit an easily spotted bug in a free trial feature, security news site KrebsOnSecurity reported Thursday.

LocationSmart, as the service is known, identifies the locations of phones connected to AT&T, Sprint, T-Mobile, or Verizon, often to an accuracy of a few hundred yards, reporter Brian Krebs said. While the firm claims it provides the location lookup service only for legitimate and authorized purposes, Krebs reported that a demo tool on the LocationSmart website could be used by just about anyone to surreptitiously track the real-time whereabouts of just about anyone else.

The tool was billed as a demonstration prospective customers could use to see the approximate location of their own mobile device. It required interested people to enter their name, email address, and phone number into a Web form. LocationSmart would then text the phone number and request permission to query the cellular network tower closest to the device. It didn’t take long for Robert Xiao, a security researcher at Carnegie Mellon University, to find a way to work around the authorization requirement.

Read 5 remaining paragraphs | Comments


Source link

About SkyNET

Leave a Reply

Your email address will not be published. Required fields are marked *