NatSec users should mask location data, NSA says
The spy agency is advising users of Defense Department and National Security Systems to take steps to mask their location data on mobile devices and computers.
The National Security Agency is advising users of Defense Department and National Security Systems to take steps to mask their location data on mobile devices and computers.
In an Aug. 4 cybersecurity advisory, NSA warned users of the risks inherent in using connected devices that transmit and receive cellular signals and employ Bluetooth and WI-Fi connectivity, noting that precise location data can be obtained by monitoring those signals and information on movement, daily activities and routines, associations among users and more.
"When location exposure could be detrimental to a mission, users should prioritize mission risk and apply location tracking mitigations to the greatest extent possible," the guidance states.
NSA is also concerned about the proliferation of location and personal data on applications and social media networks, noting that even taking privacy settings into account, "information [on social networks] may be exposed to a wider audience than intended." The guidance also reminds users that the content of pictures and certain metadata encoded in photographs can also yield location data.
NSA advises users to take certain steps, including disabling connectivity and location settings when not in use and operating in airplane mode when devices are not in use. Additionally, location data sharing should be turned off for the device and for individual apps and apps that rely on location data such as mapping, traffic and fitness trackers. Additionally, NSA advises tuning privacy settings to limit advertising tracking, turning off any "find my phone" settings that allow for the remote pinpointing of devices and using an anonymizing virtual private network to shield location information.
This article first appeared on FCW, a Defense Systems partner site.