• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer
  • Our Services
  • Contact Us
  • Newsletter
  • Top Nav Social Icons

Mobile ID World

Mobile ID World

Identification Revolution

Jumio next-generation of digital ID verification.
  • Mobile ID
    • What Is Mobile ID?
    • Identity Associations
    • Premier Partners
    • FAQ
  • News
  • Solutions
    • Behavioral
    • Facial Recognition
    • Fingerprint Biometrics
    • Iris Biometrics
    • Second Factor
    • Smart Cards
    • Smartphones
    • Vital
    • Voice
    • Wearable Tech
    • Other
  • Applications
    • Access Control
    • Cloud Technology
    • Commerce
    • Enterprise
    • Healthcare
    • Identification
    • Internet of Things
    • Law Enforcement
    • Strong Online Authentication
  • Exclusive
    • Interviews
    • Featured Articles
    • Podcasts
  • Companies
  • Events

Beer Rating App Offers Useful Data for Spies: Report

May 29, 2020

An investigative report from the website Bellingcat has found that the beer-rating social app Untappd can be used to identify military personnel and track the locations they’ve visited.

Beer Rating App Offers Useful Data for Spies: Report

The app works by having users ‘check-in’ whenever they are drinking a beer, whether it be at home or out at a bar or restaurant. Users are encouraged to take photos of the beer they are having, which are then tagged using geolocation and added to their personal profile.

A user’s personal profile contains a history of everywhere they’ve ever checked in using Untappd. In the course of its research, Bellingcat discovered that even though government facilities aren’t discoverable through the app’s search function, they are once you go through the process of ‘checking in’ your beer.

Untappd uses Foursquare’s API to draw its available locations for a check in, so it has a comprehensive list of places depending on where you are. By ‘spoofing’ GPS coordinates to fool the app into thinking they were near a military base, the investigator was able to tag a checked-in beer from that location.

Once they tagged their beer from the military base, they were able to see every other user that had also tagged the same location. From that point on, it’s a matter of selecting one of the user profiles and searching through their history to see where else they have been.

Via Untappd’s web app, someone can also go to a location’s profile page and see a list of their ‘loyal patrons’, a ranking of the top 15 users for that particular spot. This feature allowed the investigators to identify people that frequented bars or restaurants in military bases and embassies as likely employees or personnel rather than tourists who accidentally geotagged the wrong place.

In one case, Bellingcat was able to identify a number of Dutch military personnel based on their check-ins from a Dutch base. Looking at those users’ respective histories and the pattern of check-ins they shared in common revealed a number of other probable military sites around the world.

Other examples of tracing people through the app were a U.S. drone pilot revealing a number of domestic and overseas military bases he had visited, and a naval officer who checked in with the app at a beach next to the Guantanamo Bay detention center, followed by several more entries from the Pentagon.

In addition to using location data, Bellingcat pointed out that the photos users upload for their check-ins can often reveal other sensitive information as well. Aside from several examples of photos of beers exposing sensitive government documents or personal ID’s, users also often tag others in their posts, providing a firmer base from which to draw connections between people and the locations they have visited.

Sources: Bellingcat, Axios

Filed Under: Industry NewsTagged With: cybersecurity, digital security, espionage, geolocation, geotagging, GPS spoofing, mobile apps, mobile security, sensitive data, Untappd

Related News & Articles

Frost & Sullivan Analyst Sees Hints of Automotive Future in Apple’s Latest Tech

India’s Elementik Launches New Authentication Card with FPC Biometric Module

ImageWare Systems To Host Conference Call March 16

Primary Sidebar

FacePhi Selphi

Register For the FindBiometrics Identity Summit

IDEMIA big box

Tweets

IDEMIA big box

Sponsored Links

FACEPHI is a global leader in Facial Recognition technology and in Mobile Biometrics technologies. With a strong concentration in the financial sector, FacePhi's product is rapidly becoming a service used by banks all over the world. Its implementation doesn’t just save money, it is also a way to attract clients and build loyalty, while increasing the security of transactions for both the customer and the business. To learn more about FacePhi, visit https://www.facephi.com/en/
Aware Knomi

Recent Posts

  • iProov Survey Results Point to Appetite for Digital Driver’s License Concept
  • Keyless Authentication Startup Raises $3M in Funding
  • HID Global Adds Authentication to WorkforceID Platform
  • Precise Biometrics Payment Card Tech Gets Mastercard Approval
  • Secret Double Octopus Hires New VP Of Global Sales
Aware ABIS webinar

Footer

  • About Us
  • Company Directory
  • Advertise With Us
  • Contact Us
  • Privacy Policy
  • Terms of Use
  • Archives

Follow Us

Copyright © 2021 MobileIDWorld