Untappd could pose a military security threat

Discussion in 'Beer News & Releases' started by beertunes, May 20, 2020 at 8:32 AM.

  1. beertunes

    beertunes Poo-Bah (7,142) Sep 24, 2007 Liechtenstein
    Society Trader

    https://www.stripes.com/news/hopsec-beer-rating-app-could-pose-a-military-security-threat-1.630310
     
  2. MistaRyte

    MistaRyte Zealot (541) Jan 14, 2008 Virginia
    Trader

    Friendly reminder: when you check in your hazy, make sure the carrier in port is not in the background
     
  3. BeastOfTheNortheast

    BeastOfTheNortheast Devotee (457) Dec 26, 2009 Pennsylvania
    Trader

    Can’t the same be said for any social media site?
     
    KevSal, redeemer, AlcahueteJ and 24 others like this.
  4. JohnnyHopps

    JohnnyHopps Poo-Bah (2,276) Jun 15, 2010 Indiana
    Society Trader

    So true. Any time a person posts where they are on social media, it lets everybody know where they are not. If somebody posts pics at Disney World, it grants open invitation to their home to those with nefarious intent.

    That said, I am a little surprised that there are not rules about posting your Miller Lite or Slushie pic on a military base.
     
  5. MNAle

    MNAle Poo-Bah (1,795) Sep 6, 2011 Minnesota
    Society

    The issue is location tracking in addition to (or even more than) the content of photos. (You'd think someone at a CIA training facility would know that... :rolling_eyes:)

    Tapping into a beer rating app allowed researchers to track military and intelligence personnel, including some who checked in at a military base that hosts a CIA training facility known as “the farm.”

    They're taking "sensitive military documents" to a bar???

    Users of Untappd, a smartphone app for beer lovers, also posted photos that showed debit cards, military ID cards, locations of fighter jets and possibly sensitive military documents
     
  6. Todd

    Todd Founder (5,962) Aug 23, 1996 California
    Staff Moderator Fest Crew Society

    Here's a statement from @gregavola:
    And these last three paragraphs in the Bellingcat article sum things up:
    tl;dr: This is a user issue, not a platform issue.
     
    AlcahueteJ, beergoot, Roguer and 13 others like this.
  7. AZBeerDude72

    AZBeerDude72 Poo-Bah (2,002) Jun 10, 2016 Arizona
    Society Trader

    My take is that those employed in a sensitive industry should know better for one. Second, their superiors should have a very active policy on social media and the do's and don'ts of using it.
    Common sense goes a long long way so I blame the user for this, they should know better.
    Cheers
     
  8. Ranbot

    Ranbot Defender (634) Nov 27, 2006 Pennsylvania

    Yep... The the easiest part of a complicated system to exploit is the person. Cyber security is a human behavior/knowledge issue as much or more than a tech issue.
     
  9. Urk1127

    Urk1127 Meyvn (1,320) Jul 2, 2014 New Jersey

    I think If you lived on base there would be photo restrictions and locations on your phone if you were proper have them turned off?
     
  10. officerbill

    officerbill Devotee (482) Feb 9, 2019 New York
    Society Trader

    But setting your profile to private defeats the purpose of an app designed and promoted to tell everyone what and where you're drinking.
     
    beertunes likes this.
  11. Todd

    Todd Founder (5,962) Aug 23, 1996 California
    Staff Moderator Fest Crew Society

    Sharing what you're drinking isn't dependent on where you're drinking it.
     
    beergoot, sharpski, bigstar87 and 3 others like this.
  12. officerbill

    officerbill Devotee (482) Feb 9, 2019 New York
    Society Trader

    True, but I was responding to the recommendation to set your profile to “private”
    Location tagging can be disabled, but changing to private prevents sharing anything with anyone not designated as a friend.
     
  13. Todd

    Todd Founder (5,962) Aug 23, 1996 California
    Staff Moderator Fest Crew Society

    It's just a recommendation. You could also simply use some common sense and not share your location or other data/content that might be sensitive in nature based on your job.
     
  14. Harrison8

    Harrison8 Poo-Bah (4,027) Dec 6, 2015 Missouri
    Society Trader

    Military personnel ran into an issue in 2017 when Strava updated their heat map. It so happens Strava added the ability to run between the two updates, thus adding thousands of solider's personal data to the heat maps since they didn't opt out. Compared to the surrounding areas of military bases and the cyclical routines on-base, these bases were 'glowing' on the map due to the number of uploaded activities within a certain area. It provided roadways and jogging routes - anywhere a cyclist/runner/hiker covered during their activity.

    With that said, it appears even our government has let some social medias slip through the gaps.

    I'd still be cautious. It just takes one person following you with a weak password to act as a gateway for someone to view your content without your permission. For the average person, this is probably of little concern, but if you're in an industry where there is value in knowing your location, interests, weaknesses, schedule - it doesn't act as a very secure barrier.
     
  15. Harrison8

    Harrison8 Poo-Bah (4,027) Dec 6, 2015 Missouri
    Society Trader

    Depends on the base and location inside the base.
     
    traction, officerbill and Urk1127 like this.
  16. nc41

    nc41 Poo-Bah (2,401) Sep 25, 2008 North Carolina
    Society Trader

    I never post locations, my brother does, every time he does I say , I see your not home , I’m going to come steal your TV set. It’s silly to post locations.
     
    mambossa and MNAle like this.
  17. PA-Michigander

    PA-Michigander Meyvn (1,438) Nov 10, 2013 Pennsylvania
    Trader

    You can also lie about where you’re at. A ‘friend’ will check into out of distro beers at a brewery/bottle shop and watch people come try to find it there.
     
    mambossa, beertunes and AZBeerDude72 like this.
  18. AZBeerDude72

    AZBeerDude72 Poo-Bah (2,002) Jun 10, 2016 Arizona
    Society Trader

    One big thing folks need to remember is that they never actually know when people are home or not. If I post a beer from a place I was at who is to say I am there or at home updating my logs.
    There are many times I don't post a beer while out due to not having time to do so and I post them later in the day when home, so its hard to really pinpoint where people are in real time. What I think the main culprit is with this story is it shows locations or pictures show things folks can use to determine where they are at and if your job is such that you cannot divulge that then red flag. I know when I am on a trip or out of town I never post locations or even beers I drink because I don't want others to know I am out of town. I typically will note the items and post them once back home.
     
    beergoot likes this.
  19. WunderLlama

    WunderLlama Poo-Bah (2,367) Dec 27, 2010 Massachusetts
    Society Trader

  20. readyski

    readyski Aspirant (263) Jun 4, 2005 California
    Trader

    Not a regular on Untapped, but isn't a big part of the shared experience the location?
     
    beertunes likes this.
  21. MistaRyte

    MistaRyte Zealot (541) Jan 14, 2008 Virginia
    Trader

    Lots of badges in sharing your location, bruh!
     
    beertunes and readyski like this.
  22. AlcahueteJ

    AlcahueteJ Poo-Bah (1,503) Dec 4, 2004 Massachusetts
    Society

    This is kind of like ordering a pizza to a neighbors house and watching when it gets delivered.


    Also, this would never happen with a Beeradvocate review.