Running app Polar Flow exposes locations of spies and military personnel

11 Julio, 2018, 12:43 | Author: Earnest Bishop
  • No running sign

It allows users to track their fitness and sleep activity, analyze their progress, set fitness targets and get guidance, and connect with other fitness enthusiasts. So, if you select a site as "military base" in the app and choose any fitness regime, the app would reveal the names of all the users associated with that exercise.

Polar has issued a statement addressing the security loophole, clarifying that there has been no leak or breach of private data, and has apologized for the suspension of its Explore feature.

The Institute for United Conflict Analysts (IUCA) founding member Nathan Ruser discovered that the interactive map could be used for intelligence gathering, highlighting the location of military facilities - many supposedly secret.

Polar's fitness app had security flaws exposing the location data of its users, according to a joint investigation from De Correspondent and Bellingcat.

Finding Western military service personnel was easy by cross-referencing names found on the Polar website with social network profiles such as those found on LinkedIn.

Polar has suspended its Explore feature and will likely release an update to address privacy concerns. It then becomes a very simple task to find an individual who works at a military base, including their name and what they look like, but also where they live.

More news: Las tres preguntas antes de casarte, según Barack Obama
More news: Mahrez joins Manchester City from Leicester
More news: At least one dead in Pretoria plane crash

The news comes in the wake of revelations separate fitness tracking data company Strava published a heat map visualisation of its users' athletic activity previous year which revealed secret army base locations. As people tend to turn their fitness trackers on/off when leaving or entering their homes, they unwittingly mark their houses on the map.

Users of the Flow app were located at several military bases, including Erbil in northern Iraq, Guantanamo Bay in Cuba and Gao in Mali.

Polar is not the only app doing this, but the difference between it and other popular fitness platforms, such as Strava or Garmin, is that these other sites require you to navigate to a specific person to view separate instances of his or her sessions, each exercise having its own small map.

"In contrast to Polar's app, there is no indication that people whose profiles are set to private can also be identified in these apps", they added. In effect, unless users opt for completely private profiles, their data is put at risk.

"As always, check your app-permissions, try to anonymize your online presence, and, if you still insist on tracking your activities, start and end sessions in a public space, not at your front door". Now the vast majority of Polar customers maintain the default private profiles and private sessions data settings and are not affected in any way by this case.

De Correspondent also provided how-to-guides for securing data collected through the Polar, Endomondo, Runkeeper, Runtastic, and Strava apps.

Recomendado:



Popular

Chris set to become hurricane, Beryl poses flood threat to Puerto Rico
Chris was forecasted to begin weakening by Thursday, and become a strong post-tropical cyclone by Thursday night or early Friday. Tropical Storm Chris is shown off the eastern coast of North and SC , U.S., in this satellite image July 9, 2018 at 16:12 UTC.

Tribunal Superior de Brasil confirmó prisión de Lula
En enero, esa misma corte había condenado al exlíder sindical a 12 años de prisión. En medio del caos judicial, además, se sucedieron otras situaciones complejas.

Thai football team rescue celebrated in the Dutch media
In addition to the 1,000 Thai soldiers who helped out with the rescue operation, hundreds of others took on crucial roles. Australian Foreign Minister Julie Bishop hailed Harris for being an "integral part of the rescue attempt".

Alerta tras el robo de material radioactivo en la Ciudad de México
En un comunicado, la Coordinación Nacional de Protección Civil informó que la fuente radioactiva robada es de bajo riesgo . Otros números a los que pueden llamar son 01 (55) 5128 0000, extensiones 37807, 37811, 37810, 36428, 36429 y 37812.

Netflix: ¿Cómo utilizar la nueva opción de descarga automática?
Pero, por ejemplo, si descargas contenido original de Netflix y viajas a otro país, la función seguirá operando y descargará los siguientes episodios ya que nuestro contenido no tiene restricciones de mercado a mercado.

Mbappe: Even in my wildest dreams I didn't imagine this
I helped the side like I always do and won the ball back as much as I could. "Gareth, good luck. His style is very different and the game becomes very easy once you are able to adapt to it.

Illinois Man Calls Woman's Puerto Rican Flag Shirt 'Not American'
Facebook A woman was attacked by this man at a park near Chicago because she was wearing a Puerto Rico flag shirt. Then she says: "Officer, I'm renting, I paid for a permit for this area".

UK: Tory vice chairs quit over May's Brexit plan
Asked if Brexiteers needed to put the PM's future to a vote of the Conservative Party, he replied "it may well come to that". Two parliamentary private secretaries - MPs who act as assistants to ministers - also quit their posts.

Volvió a desaparecer el argentino encontrado en Perú
Así lo pudo saber TN.com.ar, luego de hablar con Martín Ángeles, la persona que lo llevó hasta este centro de atención médica. El Ministerio de Desarrollo le encontró un sitio en el Hospital Muñiz , en el que iba a quedar internado desde hoy.

Umtiti header sends France into World Cup final
Brazil bombarded them in the first 10 minutes, in what is a clear indication to France that this Belgian side can be rattled. An even match then saw Blaise Matuidi fire in a shot on 18 minutes but Courtois was grateful that it was straight at him.