The Polar Exposure

via the eponymous Ms. Smith, whilst writing at CSO, has detailed another Polar branded (Polar Flow) fitness tracking app exposure of service member’s personally identifiable information (specifically locale, names and addresses). The flaw includes all users, even those who explicity set their particulars to private. Bad news for your Sunday morning jog…

Polar makes an online map available to its users and displays all their exercise routes and locations since 2014. According to an investigation by Bellingcat and De Correspondent, that map can also be used to let “anyone” find the names and addresses of military and intelligence agency personnel, as well as names and addresses for “personnel at nuclear storage facilities, maximum security prisons, military airports where nuclear weapons are stored, and drone bases.” – via Ms. Smith reporting for CSO

Permalink



*** This is a Security Bloggers Network syndicated blog from Infosecurity.US authored by Marc Handelman. Read the original post at: https://www.csoonline.com/article/3287646/security/polar-fitness-app-exposed-locations-names-and-addresses-of-soldiers-and-spies.html#jump