Fitness app revealed data on military, intelligence personnel

July 9, 2018
Finnish-based Polar has become the latest firm whose fitness app has leaked sensitive data on military personnel around the world, raising concerns about location tracking by health devices

Mobile fitness app Polar has suspended its location tracking feature after security researchers found it had revealed sensitive data on military and intelligence personnel from 69 countries.

The revelation on the application from Finnish-based app Polar Flow comes months after another health app, Strava, was found to have showed potentially sensitive information about US and allied forces around the world.

Security researchers in the Netherlands said Sunday they were able to find data on some 6,000 individuals including military personnel from dozens of countries and employees of the FBI and National Security Agency.

The disclosure illustrates the potential risks of using fitness apps which can track a person's location, and which may be "scraped" for espionage.

"With only a few clicks, a high-ranking officer of an airbase known to host nuclear weapons can be found jogging across the compound in the morning," security researcher Foeke Postma said in a blog post Sunday after an investigation with the Dutch news organization De Correspondent.

"We can find Western military personnel in Afghanistan through the Polar site. Cross-checking one name and profile picture with social media confirmed one soldier or officer's identity."

The investigation found detailed personal information, including home addresses, of military personnel, persons serving on submarines, Americans in the Green Zone in Baghdad and Russian soldiers in Crimea, the researchers said.

Polar said in a statement it was suspending the app's feature that allowed users to share data, while noting that any data made public was the result of users who opted in to location tracking.

"It is important to understand that Polar has not leaked any data, and there has been no breach of private data," the statement said.

It said the location tracking feature "is used by thousands of athletes daily all over the world to share and celebrate amazing training sessions."

According to De Correspondent, only about two percent of Polar users chose to share their data, but that nonetheless allowed anyone to discover potentially from military or civilian personnel.

"We found the names and addresses of personnel at military bases including Guantanamo Bay in Cuba, Arbil in Iraq, Gao in Mali, and bases in Afghanistan, Saudi Arabia, Qatar, Chad, and South Korea," the report said.

In January, the Pentagon said it was reviewing its policies on use of fitness application after Strava's map showed a series of military bases in Iraq as well as sites in Afghanistan.

Explore further: Aussie military says tracking app doesn't breach security

Related Stories

Ethical challenges for medical personnel in combat zones

January 9, 2018

Licensed medical personnel on military operations abroad adapt easily to the military organisation but experience dual loyalties between the organisation and their medical ethics. This emerges in a new dissertation by Kristina ...

Another foe for the U.S. military: skin cancer

May 24, 2018

(HealthDay)—For U.S. military personnel, deployment carries many dangers. And besides the well-known threats they face, these men and women are also at a higher-than-average risk for skin cancer, including potentially deadly ...

Recommended for you

Late to the party, German carmakers join race against Tesla

September 23, 2018

After years watching Tesla's electric cars speed ahead while they have been on the defensive over an industry-wide diesel emissions scandal, German high-end manufacturers have finally unveiled their first challengers to the ...

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.