Lawmakers in Washington have called for urgent action after it was revealed that foreign adversaries obtained sensitive location data from the smartphones of active-duty soldiers. The data, collected by commercial apps and sold by data brokers, allowed hostile states to track troop movements and identify military bases, according to a congressional report seen by UKPulse Media.
The breach underscores a growing vulnerability in modern warfare: the unchecked sale of geolocation information harvested from everyday devices. Even when location services are disabled, some apps continue to ping nearby Wi-Fi networks or cell towers, creating a digital trail that can be bought and sold. For UK forces operating alongside American allies, the implications are direct—any data leak from coalition personnel could compromise joint operations.
Experts warn that the issue is not limited to the United States. British soldiers, whether deployed abroad or stationed at domestic bases such as Salisbury Plain or Catterick, carry smartphones that generate similar data. 'This is a systemic problem,' said Dr. Emily Hartley, a cybersecurity researcher at the University of Cambridge. 'Commercial tracking ecosystems do not distinguish between a civilian jogger and a special forces operator. Once the data is aggregated, it can be reverse-engineered to reveal patterns of life, patrol routes, and even unit strength.'
In the UK, the Information Commissioner's Office (ICO) has powers to fine companies that mishandle personal data, but critics argue that enforcement remains patchy. The EU's forthcoming AI Act, which imposes strict rules on the use of biometric and location data, does not apply post-Brexit. However, the UK government has signalled its intention to introduce similar legislation through the Data Protection and Digital Information Bill, though progress has been slow.
For British businesses that rely on location-based services—from delivery apps to retail analytics—the controversy presents both a reputational risk and a regulatory wake-up call. 'Companies need to audit their data supply chains immediately,' said Mark Rowland, a data ethics consultant. 'If your app is selling location data that ends up in the hands of a hostile state, you are not just breaking trust—you may be aiding an adversary.'
The Pentagon is reportedly reviewing its policies on personal electronic devices, but no official UK Ministry of Defence statement has been issued. Security experts expect the MoD to follow suit with updated guidance for service personnel, potentially banning certain apps or requiring hardened devices on deployment.
Source: UKPulse Media analysis of US congressional report and expert interviews.