American’s National Security Agency (NSA) “has shared new guidance with U.S. military and intelligence personnel, suggesting they take additional precautions to safeguard their location data,” reports Engadget. “The agency argues the information devices and apps collect can pose a national security threat.” Ars Technica reports:
The National Security Agency is recommending that some government workers and people generally concerned about privacy turn off find-my-phone, Wi-Fi, and Bluetooth whenever those services are not needed, as well as limit location data usage by apps. “Location data can be extremely valuable and must be protected,” an advisory stated. “It can reveal details about the number of users in a location, user and supply movements, daily routines (user and organizational), and can expose otherwise unknown associations between users and locations.” NSA officials acknowledged that geolocation functions are enabled by design and are essential to mobile communications. The officials also admit that the recommended safeguards are impractical for most users. Mapping, location tracking of lost or stolen phones, automatically connecting to Wi-Fi networks, and fitness trackers and apps are just a few of the things that require fine-grained locations to work at all. But these features come at a cost. Adversaries may be able to tap into location data that app developers, advertising services, and other third parties receive from apps and then store in massive databases. Adversaries may also subscribe to services such as those offered by Securus and LocationSmart, two services that The New York Times and KrebsOnSecurity documented, respectively. Both companies either tracked or sold locations of customers collected by the cell towers of major cellular carriers. Not only did LocationSmart leak this data to anyone who knew a simple trick for exploiting a common class of website bug, but a Vice reporter was able to obtain the real-time location of a phone by paying $300 to a different service. The New York Times also published this sobering feature outlining services that use mobile location data to track the histories of millions of people over extended periods. The advisory also warns that tracking often happens even when cellular service is turned off, since both Wi-Fi and Bluetooth can also track locations and beam them to third parties connected to the Internet or with a sensor that’s within radio range. Long-time Slashdot reader AmiMoJo shares some of the agency’s other recommendations: Enter airplane mode when not using the deviceMinimize web browsing on your device and do not allow browsers to access location servicesUse an anonymous VPNMinimize location information stored in the cloud
Read more of this story at Slashdot.
Source:
https://it.slashdot.org/story/20/08/15/2324207/the-nsas-guidelines-for-protecting-location-data?utm_source=rss1.0mainlinkanon&utm_medium=feed