For practically a decade, the Pentagon was warned—by its personal contractors, analysts, and intelligence businesses—that anybody with a bank card might purchase a map of the place American troops sleep, work, and store nuclear weapons. Now the invoice has come due in a conflict zone.
A newly disclosed letter exhibits the warnings went unheeded: US Central Command now confirms it has acquired “a number of risk experiences regarding adversary exploitation of economic location knowledge to focus on or surveil US personnel in theater”—the primary official acknowledgment that the data-broker economic system is getting used to hunt American forces within the Center East.
The focusing on was first reported by Reuters, which obtained the Centcom letter. However the affirmation lands atop a report that’s longer and extra damning than the one doc suggests.
For the higher a part of a decade, US lawmakers have heard the identical alarms concerning the risks of commercially out there location knowledge that the Pentagon did—from the identical intelligence assessments, from witnesses, from their very own colleagues. But complete privateness laws has repeatedly stalled in Washington, and the one slim repair that did move—a requirement that knowledge shared with navy contractors not be resold—left the broader business untouched.
One of many earliest warnings got here in 2016. On the Joint Particular Operations Command compound at Fort Bragg, California, a authorities technologist briefing senior officers demonstrated how business location knowledge—purchased, not hacked—might monitor telephones from Fort Bragg and MacDill Air Power Base in Florida, the house stations of America’s most elite items, via Turkey and into northern Syria, the place they clustered at a covert ahead working base. The identical knowledge was out there to any advertiser or international intelligence service.
Even because the Pentagon was warned that the location-data market was putting its personal individuals in peril, elements of the division had been desperate to turn into its prospects. The Protection Intelligence Company disclosed to Congress in 2021 that it makes use of commercially bought telephone location knowledge—together with on People—with out a warrant, taking the place that none is required. Months earlier, Motherboard reported that the US navy was shopping for location knowledge harvested from popular consumer apps.
In 2023, the Military paid to have the risk spelled out. Researchers at Duke College—working underneath a grant from the US Army Academy at West Level—set out to buy data on American service members the way in which a international adversary would possibly. They scraped tons of of knowledge dealer web sites and located hundreds of listings promoting knowledge on navy personnel, together with datasets titled “Army Households Mailing Checklist” and “Arduous Core Army Households.”
The researchers began shopping for. For as little as 12 cents a report, with virtually no vetting, they bought names, residence addresses, well being situations, and monetary particulars on active-duty troops. Posing as a purchaser working via a Singapore-based area, additionally they obtained the identical form of knowledge geofenced to Fort Bragg, Quantico, and different installations. One dealer provided to skip its identification examine in the event that they paid by wire.
A 12 months later, WIRED found the identical form of knowledge flowing via Google’s personal promoting platform. Working with knowledge obtained by the Irish Council for Civil Liberties—whose investigator had gained entry to a US dealer’s viewers lists by standing up a pretend analytics agency—WIRED recognized advertising “segments” on Google’s Show & Video 360 that singled out US authorities staff deemed “decisionmakers” working “particularly within the discipline of nationwide safety,” alongside lists focusing on individuals who work for corporations licensed to construct missiles, space-launch autos, and the cryptographic programs that defend labeled knowledge.
The Irish Council for Civil Liberties investigator stated he anticipated to have his cowl story examined. “Once I signed up, there was no questions requested in anyway,” he advised WIRED on the time. “I might have been anyone.”
